Trojaner-Board
Seite 1 von 4 1 23 Letzte »
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Backdoor gefunden - Logfiles (https://www.trojaner-board.de/182388-backdoor-gefunden-logfiles.html)

LChan 16.10.2016 22:52
Backdoor gefunden - Logfiles
 
So, nachdem mir von kerri88 gesagt wurde, was ich in dem Fall tun soll, hier die entsprechenden Logfiles.
LG LChan :3

Hier das Malwarebytes Anti-Rootkit Logfile:

Code:
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2016.10.16.08
  rootkit: v2016.09.26.02

Windows 10 x64 NTFS
Internet Explorer 11.321.14393.0
Viral Nature :: VIRALNATURE-PC [administrator]

16.10.2016 22:49:05
mbar-log-2016-10-16 (22-49-05).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 366024
Time elapsed: 12 minute(s), 56 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
Hier das Gmer Logfile:

Code:
GMER 2.2.19882 - hxxp://www.gmer.net
Rootkit scan 2016-10-16 23:32:14
Windows 6.2.9200  x64 \Device\Harddisk0\DR0 -> \Device\0000002b Crucial_CT256MX100SSD1 rev.MU01 238,47GB
Running: gmer-2.2.19882.exe; Driver: C:\Users\VIRALN~1\AppData\Local\Temp\axloruog.sys


---- User code sections - GMER 2.2 ----

?      C:\WINDOWS\system32\wbem\wbemsvc.dll [3120] entry point in ".rdata" section                                                                  000000006ef08fc0
?      C:\WINDOWS\SYSTEM32\dbgcore.DLL [3148] entry point in ".rdata" section                                                                      000000006fd6c940
?      C:\WINDOWS\system32\apphelp.dll [9220] entry point in ".rdata" section                                                                      000000006c4bf7c0

---- Threads - GMER 2.2 ----

Thread  C:\WINDOWS\system32\csrss.exe [764:10260]                                                                                                    ffff9f66ef006c20
Thread  C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [7760:5160]                                                                              00007ffb1f6158f0
Thread  C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [7760:7744]                                                                              00007ffb1e1359c0
Thread  C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [7760:1404]                                                                              00007ffb12512bc0
Thread  C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [7760:11564]                                                                            00007ffb1e1370d0
Thread  C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [7760:6080]                                                                              00007ffb1b412880
Thread  C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [7760:9532]                                                                              00007ffb1e1359c0
Thread  C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [7760:11756]                                                                            00007ffb1f6158f0
Thread  C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [7760:11508]                                                                            00007ffb1f6158f0
Thread  C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [7760:8796]                                                                              00007ffb1f6158f0
Thread  C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [7760:8724]                                                                              00007ffb1bff11a0
Thread  C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [7760:11212]                                                                            00007ffb113fe010
Thread  C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [7760:1864]                                                                              00007ffb150623bc
Thread  C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe [7760:4728]                                                                              00007ffb123d8ff0
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.25061.0_x64__8wekyb3d8bbwe\Video.UI.exe [4256:13180]                                    00007ffb1f6158f0
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.25061.0_x64__8wekyb3d8bbwe\Video.UI.exe [4256:5424]                                    00007ffb1e1359c0
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.25061.0_x64__8wekyb3d8bbwe\Video.UI.exe [4256:7312]                                    00007ffb12512bc0
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.25061.0_x64__8wekyb3d8bbwe\Video.UI.exe [4256:10764]                                    00007ffaee655870
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.25061.0_x64__8wekyb3d8bbwe\Video.UI.exe [4256:3504]                                    00007ffb1f6158f0
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.25061.0_x64__8wekyb3d8bbwe\Video.UI.exe [4256:12228]                                    00007ffb1d9ca1e0
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.25061.0_x64__8wekyb3d8bbwe\Video.UI.exe [4256:11192]                                    00007ffb132c48e0
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.25061.0_x64__8wekyb3d8bbwe\Video.UI.exe [4256:5564]                                    00007ffb0e57c820
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.25061.0_x64__8wekyb3d8bbwe\Video.UI.exe [4256:8984]                                    00007ffb0e57c820
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.25061.0_x64__8wekyb3d8bbwe\Video.UI.exe [4256:5888]                                    00007ffb1e1370d0
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.25061.0_x64__8wekyb3d8bbwe\Video.UI.exe [4256:10552]                                    00007ffb123d8ff0
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.25021.0_x64__8wekyb3d8bbwe\Music.UI.exe [9836:11568]                                    00007ffb1f6158f0
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.25021.0_x64__8wekyb3d8bbwe\Music.UI.exe [9836:12616]                                    00007ffb1e1359c0
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.25021.0_x64__8wekyb3d8bbwe\Music.UI.exe [9836:7884]                                    00007ffb12512bc0
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.25021.0_x64__8wekyb3d8bbwe\Music.UI.exe [9836:9592]                                    00007ffaee655870
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.25021.0_x64__8wekyb3d8bbwe\Music.UI.exe [9836:12368]                                    00007ffb1e2cca70
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.25021.0_x64__8wekyb3d8bbwe\Music.UI.exe [9836:6772]                                    00007ffb1d9ca1e0
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.25021.0_x64__8wekyb3d8bbwe\Music.UI.exe [9836:2556]                                    00007ffb1f6158f0
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.25021.0_x64__8wekyb3d8bbwe\Music.UI.exe [9836:4844]                                    00007ffb1f6158f0
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.25021.0_x64__8wekyb3d8bbwe\Music.UI.exe [9836:5592]                                    00007ffb0e57c820
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.25021.0_x64__8wekyb3d8bbwe\Music.UI.exe [9836:11292]                                    00007ffb132c48e0
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.25021.0_x64__8wekyb3d8bbwe\Music.UI.exe [9836:9072]                                    00007ffb0e57c820
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.25021.0_x64__8wekyb3d8bbwe\Music.UI.exe [9836:6028]                                    00007ffb1e1370d0
Thread  C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.25021.0_x64__8wekyb3d8bbwe\Music.UI.exe [9836:5484]                                    00007ffb123d8ff0

---- Registry - GMER 2.2 ----

Reg    HKLM\SYSTEM\CurrentControlSet\Control\CMF\SqmData@CMFStartTime                                                                              0x9A 0xFF 0x07 0x32 ...
Reg    HKLM\SYSTEM\CurrentControlSet\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{0EF0DC12-9FA7-4B7A-ADBC-EA7A6946F7DD}\Connection@Name  isatap.{665670F5-9FB6-435B-9067-595DD022E219}
Reg    HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\kernel\RNG@RNGAuxiliarySeed                                                            930770148
Reg    HKLM\SYSTEM\CurrentControlSet\Services\aswRvrt\Parameters\Instup_14749069580782280@SetupOperations                                          ???2?????2?2?3?3?3?3?4???????????????????????????t???????????????????????????????????????A??????? ???????2???????????2???????? ??????????????????????????2??????Commited?????2?2?2?2?2?2?2?2???????????????????t???????????????????t?????????2???????????????????????????2???????????s??? ?2?????4?4?4?5?5?5?5?6?6?6?????????????????????????????t??????????????????4???????????????? ???????1?????2?????2??????????P?7??????????????2?????????e????aswSnx???????2?2?2?2?2?2?2?2??????L??2?????????n????avast! virtualization driver (aswSnx)???????????????????????????????t???????????????????0?????P??2??????????????\SystemRoot\system32\drivers\aswSnx.sys?00????0??2??????????FSFilter Virtualization??????????2??????????????FltMgr??????? ???????2?????2?????2? ???????? ?????????s??????? ??2???????????e??aswSnx Instance??????2?????2???2????? ???????2???????????2? ?????????????????????e???????2??????????137600???????2?2????????????????s??????2????? ???????2???????????2? ????????T??? ???????????? T??2??????????r???\??\C:\Program Files\AV
Reg    HKLM\SYSTEM\CurrentControlSet\Services\aswRvrt\Parameters\Instup_14749069895782280@SetupOperations                                          ? ?2?????4?4?4?5?5?5?5?6?6?6?????????????????????????????t??????????????????4???????????????? ???????1?????2?????2??????????P?7??????????????2?????????e????aswSnx???????2?2?2?2?2?2?2?2??????L??2?????????n????avast! virtualization driver (aswSnx)???????????????????????????????t???????????????????0?????P??2??????????????\SystemRoot\system32\drivers\aswSnx.sys?00????0??2??????????FSFilter Virtualization??????????2??????????????FltMgr??????? ???????2?????2?????2? ???????? ?????????s??????? ??2???????????e??aswSnx Instance??????2?????2???2????? ???????2???????????2? ?????????????????????e???????2??????????137600???????2?2????????????????s??????2????? ???????2???????????2? ????????T??? ???????????? T??2??????????r???\??\C:\Program Files\AVAST Software\Avast????2?2????? P??2??????????????\??\C:\ProgramData\AVAST Software\Avast?????? ???????1?????2?????2??????????N?8?????P????????2?????????e????aswSP????2?2?2?2?2?2?2?2??????.??2?????????n????avast! Self Protection???????????????????????????????????(?????????????????
Reg    HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\Isatap\{0EF0DC12-9FA7-4B7A-ADBC-EA7A6946F7DD}@InterfaceName                      isatap.{665670F5-9FB6-435B-9067-595DD022E219}
Reg    HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\Isatap\{0EF0DC12-9FA7-4B7A-ADBC-EA7A6946F7DD}@ReusableType                        0
Reg    HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch@Epoch                                                                              1398
Reg    HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch2@Epoch                                                                            54
Reg    HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeEstimated                                                          0x70 0x48 0x34 0x6A ...
Reg    HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeHigh                                                              0x70 0xB0 0xF8 0xCB ...
Reg    HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeLow                                                                0x70 0xE0 0x6F 0x08 ...
Reg    HKLM\SYSTEM\Setup\Upgrade\NsiMigrationRoot\60\0@Rw                                                                                          0x64 0x62 0x03 0x00 ...
Reg    HKLM\SYSTEM\Setup\Upgrade\NsiMigrationRoot\60\0@RwMask                                                                                      0x64 0x62 0x03 0x00 ...
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Live\Roaming\RegistrarData@LastRenewCollectionsInterest                                      0x99 0x4F 0x6D 0xB0 ...
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Notifications@TimestampWhenSeen                                                              0xE0 0xB7 0x47 0x4A ...
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\PushNotifications\wpnidm\48415de7@NotificationsCount                                          4
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Search\JumplistData@E7CF176E110C211B                                                          0xA5 0xBD 0x03 0xA4 ...
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Search\RecentApps\{7049F216-EBCF-4B9E-B387-457FF4925FC6}@LastAccessedTime                    0x00 0x24 0xAC 0x9A ...
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Search\RecentApps\{7049F216-EBCF-4B9E-B387-457FF4925FC6}@LaunchCount                          80
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Search\RecentApps\{B1D308E5-FC58-4015-9976-F4EC8F31FF65}@LastAccessedTime                    0x20 0xB1 0xBA 0xD7 ...
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Search\RecentApps\{B1D308E5-FC58-4015-9976-F4EC8F31FF65}@LaunchCount                          9
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Security and Maintenance@MessageTime                                                          0xDC 0x42 0x19 0xAD ...
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@0                                                                                    C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameRanger.lnk?C:\Users\Viral Nature\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@1                                                                                    C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk?C:\Users\Viral Nature\AppData\Local\osu!\osu!.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@2                                                                                    C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk?C:\Users\Viral Nature\AppData\Roaming\Spotify\Spotify.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@3                                                                                    C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk?C:\WINDOWS\system32\eudcedit.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@4                                                                                    C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 12 (64bit).lnk?C:\Program Files (x86)\Image-Line\FL Studio 12\FL64.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@5                                                                                    C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 12.lnk?C:\Program Files (x86)\Image-Line\FL Studio 12\FL.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@6                                                                                    C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\IL Download Manager.lnk?C:\Program Files (x86)\Image-Line\Downloader\ILDownloadManager.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@7                                                                                    C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner\MSI Afterburner.lnk?C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@8                                                                                    C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software\Open Broadcaster Software (32bit).lnk?C:\Program Files (x86)\OBS\OBS.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@9                                                                                    C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software\Open Broadcaster Software (64bit).lnk?C:\Program Files\OBS\OBS.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@10                                                                                    C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server\RivaTuner Statistics Server.lnk?C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@11                                                                                    C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk?C:\Program Files (x86)\Steam\Steam.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@12                                                                                    C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client\TeamSpeak 3 Client.lnk?C:\Users\Viral Nature\AppData\Local\TeamSpeak 3 Client\ts3client_win64.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@13                                                                                    C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tweak-SSD v2\Tweak-SSD v2.lnk?C:\Program Files\Tweak-SSD v2\Tweak-SSD.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@14                                                                                    C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uplay\Uplay.lnk?C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@15                                                                                    C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk?C:\WINDOWS\syswow64\WindowsPowerShell\v1.0\powershell.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@16                                                                                    C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk?C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@17                                                                                    C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk?C:\Program Files\WinRAR\WinRAR.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@18                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat.com.lnk?C:\Program Files (x86)\Adobe\Acrobat.com\Acrobat.com.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@19                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller X.lnk?C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrodist.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@20                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat X Pro.lnk?C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@21                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Content Viewer.lnk?C:\Program Files (x86)\Adobe\Adobe Content Viewer\Adobe Content Viewer.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@22                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk?C:\Program Files (x86)\Adobe\Adobe Help\Adobe Help.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@23                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk?C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@24                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Widget Browser.lnk?C:\Program Files (x86)\Adobe\Adobe Widget Browser\Adobe Widget Browser.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@25                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk?C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@26                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk?C:\Program Files (x86)\Audacity\audacity.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@27                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk?C:\Program Files\GIMP 2\bin\gimp-2.8.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@28                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk?C:\Program Files\paint.net\PaintDotNet.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@29                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pidgin.lnk?C:\Program Files (x86)\Pidgin\pidgin.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@30                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 10-Upgrade-Assistent.lnk?C:\Windows10Upgrade\Windows10UpgraderApp.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@31                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YaTQA.lnk?C:\Program Files (x86)\YaTQA\yatqa.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@32                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Mobility Center.lnk?C:\WINDOWS\system32\mblctr.exe?/open?
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@33                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\ShapeCollector.lnk?C:\Program Files\Common Files\Microsoft Shared\Ink\ShapeCollector.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@34                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\TabTip.lnk?C:\Program Files\Common Files\Microsoft Shared\Ink\TabTip.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@35                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe\Adobe Story.lnk?C:\Program Files (x86)\Adobe Story\Adobe Story.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@36                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle ES2\Adobe LiveCycle Designer ES2.lnk?C:\Program Files (x86)\Adobe\Acrobat 10.0\Designer 9.0\FormDesigner.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@37                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Adobe After Effects CS5.5.lnk?C:\Program Files\Adobe\Adobe After Effects CS5.5\Support Files\AfterFX.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@38                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Adobe Audition CS5.5.lnk?C:\Program Files (x86)\Adobe\Adobe Audition CS5.5\Adobe Audition.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@39                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Adobe Bridge CS5.1.lnk?C:\Program Files (x86)\Adobe\Adobe Bridge CS5.1\Bridge.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@40                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Adobe Contribute CS5.1.lnk?C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\App\Contribute.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@41                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Adobe Device Central CS5.5.lnk?C:\Program Files (x86)\Adobe\Adobe Device Central CS5.5\DeviceCentral.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@42                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Adobe Dreamweaver CS5.5.lnk?C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS5.5\Dreamweaver.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@43                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Adobe Encore CS5.1 .lnk?C:\Program Files (x86)\Adobe\Adobe Encore CS5.1\Adobe Encore.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@44                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Adobe ExtendScript Toolkit CS5.5.lnk?C:\Program Files (x86)\Adobe\Adobe Utilities - CS5.5\ExtendScript Toolkit CS5.5\ExtendScript Toolkit.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@45                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Adobe Extension Manager CS5.5.lnk?C:\Program Files (x86)\Adobe\Adobe Extension Manager CS5.5\Adobe Extension Manager CS5.5.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@46                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Adobe Fireworks CS5.1.lnk?C:\Program Files (x86)\Adobe\Adobe Fireworks CS5.1\Fireworks.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@47                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Adobe Flash Builder 4.5.lnk?C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.5\FlashBuilder.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@48                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Adobe Flash Catalyst CS5.5.lnk?C:\Program Files (x86)\Adobe\Adobe Flash Catalyst CS5.5\Adobe Flash Catalyst.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@49                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Adobe Flash Professional CS5.5.lnk?C:\Program Files (x86)\Adobe\Adobe Flash CS5.5\Flash.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@50                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Adobe Illustrator CS5.1.lnk?C:\Program Files (x86)\Adobe\Adobe Illustrator CS5.1\Support Files\Contents\Windows\Illustrator.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@51                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Adobe Media Encoder CS5.5.lnk?C:\Program Files\Adobe\Adobe Media Encoder CS5.5\Adobe Media Encoder.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@52                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Adobe OnLocation CS5.1.lnk?C:\Program Files (x86)\Adobe\Adobe OnLocation CS5.1\Adobe OnLocation.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@53                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Adobe Photoshop CS5.1 (64 Bit).lnk?C:\Program Files\Adobe\Adobe Photoshop CS5.1 (64 Bit)\Photoshop.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@54                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Adobe Photoshop CS5.1.lnk?C:\Program Files (x86)\Adobe\Adobe Photoshop CS5.1\Photoshop.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@55                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Adobe Pixel Bender Toolkit 2.6.lnk?C:\Program Files (x86)\Adobe\Adobe Utilities - CS5.5\Pixel Bender Toolkit 2.6\Pixel Bender Toolkit.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@56                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Adobe Premiere Pro CS5.5.lnk?C:\Program Files\Adobe\Adobe Premiere Pro CS5.5\Adobe Premiere Pro.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@57                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5\Mocha for After Effects CS5.5.lnk?C:\Program Files\Adobe\Adobe After Effects CS5.5\mocha\bin\mocha4ae_adobe.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@58                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility\ASRock eXtreme Tuner\ASRock eXtreme Tuner.lnk?C:\Program Files (x86)\ASRock Utility\AXTU\Bin\AsrXTU.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@59                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility\InstantBoot\InstantBoot.lnk?C:\Program Files (x86)\ASRock Utility\InstantBoot\InstantBoot.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@60                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility\SmartConnect\SmartConnect.lnk?C:\Program Files\ASRock Utility\SmartConnect\AsrSmartConnect.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@61                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net\Battle.net.lnk?C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@62                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CAM\CAM.lnk?C:\Program Files (x86)\NZXT\CAM\CAM_Client_V3.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@63                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk?C:\Program Files\CCleaner\CCleaner64.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@64                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\CPU-Z\CPU-Z.lnk?C:\Program Files\CPUID\CPU-Z\cpuz.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@65                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative\THX TruStudio\THX TruStudio-Einstellungen.lnk?C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@66                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink MediaEspresso\MediaEspresso Gadget.lnk?C:\Program Files (x86)\CyberLink\MediaEspresso\MediaEspresso.exe?gadget?
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@67                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink MediaEspresso\MediaEspresso.lnk?C:\Program Files (x86)\CyberLink\MediaEspresso\MediaEspresso.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@68                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\DVDVideoSoft Free Studio.lnk?C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@69                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Free YouTube Download.lnk?C:\Program Files (x86)\DVDVideoSoft\Free YouTube Download\FreeYTVDownloader.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@70                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Free YouTube to MP3 Converter.lnk?C:\Program Files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\FreeYouTubeToMP3Converter.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@71                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Log Report.lnk?C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\DVSSysReport.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@72                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Premium Membership.lnk?C:\Program Files (x86)\Common Files\DVDVideoSoft\PremiumMembershipOffer.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@74                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps\Fraps.lnk?C:\Fraps\fraps.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@75                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GenArts Sapphire OFX\Check for Sapphire OFX Updates.lnk?C:\Program Files (x86)\GenArts\SapphireOFX\genarts-frontend.exe?-update?
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@76                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GenArts Sapphire OFX\Install Sapphire OFX Serial Number.lnk?C:\Program Files (x86)\GenArts\SapphireOFX\genarts-frontend.exe?-license-install?
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@77                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GenArts Sapphire OFX\Sapphire Flare Designer.lnk?C:\Program Files (x86)\GenArts\SapphireOFX\flare-editor\flare_editor.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@78                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GMX MailCheck\GMX MailCheck Reparaturassistent.lnk?C:\ProgramData\1&1 Mail & Media GmbH\MailCheck IE\GMX_MailCheck_Repair.exe?/REPAIR=1 /IT=3 /ID=9 /IM=12 /IY=2015 /IC=80 /IK=20632 /IJ=1 /LOCALE=de_DE /SEARCH=0 /DEFSEARCH=0 /STARTPAGE=0 /BUNDLE=0?
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@79                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GMX MailCheck\GMX Sichere Websuche.lnk?C:\Program Files (x86)\GMX MailCheck\IE\GMX_Sichere_Websuche.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@80                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo\Gyazo GIF.lnk?C:\Program Files (x86)\Gyazo\GyazoGIF.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@81                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo\Gyazo Settings.lnk?C:\Program Files (x86)\Gyazo\GyStation.exe?/option?
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@82                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo\Gyazo.lnk?C:\Program Files (x86)\Gyazo\Gyazowin.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@83                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone\Hearthstone.lnk?D:\Hearthstone\Hearthstone\Hearthstone Beta Launcher.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@84                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios\Hi-Rez Diagnostics and Support.lnk?C:\Program Files (x86)\Hi-Rez Studios\HiRezGamesDiagAndSupport.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@86                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite\HiSuite.lnk?C:\Program Files (x86)\HiSuite\HiSuite.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@87                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 12.lnk?C:\Program Files (x86)\Image-Line\FL Studio 12\FL.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@88                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel\Intel Control Center.lnk?C:\Program Files (x86)\Intel\Intel Control Center\IntelControlCenter.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@89                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel\Updates\Intel(R) ME FW Recovery Agent.lnk?C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe?--domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller consumer?
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@90                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iZotope\iDrum\iZotope iDrum.lnk?C:\Program Files (x86)\iZotope\iDrum\win32\iDrum.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@91                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iZotope\The T-Pain Effect\The T-Pain Engine.lnk?C:\Program Files (x86)\iZotope\The T-Pain Effect\win32\The T-Pain Engine.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@92                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Magic Bullet Looks\Magic Bullet Looks.lnk?C:\Program Files (x86)\LooksBuilder\Magic Bullet Looks.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@93                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MagicYUV\MagicYUV QuickTime configuration.lnk?C:\Windows\system32\rundll32.exe?"C:\Program Files (x86)\QuickTime\QTComponents\magicyuv_qt.qtx",Configure?
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@94                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MagicYUV\MagicYUV VFW codec configuration.lnk?C:\Windows\system32\rundll32.exe?magicyuv.dll,Configure?
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@95                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus\Deinstallieren.lnk?C:\Program Files\McAfee Security Scan\uninstall.exe?C:\Program Files\McAfee Security Scan\3.11.334\McAfee.ico?
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@96                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus\McAfee Security Scan Plus.lnk?C:\Program Files\McAfee Security Scan\3.11.334\McUICnt.exe?SecurityScanner.dll?
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@97                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows - LIVE\Games for Windows - LIVE.lnk?C:\Program Files (x86)\Microsoft Games for Windows - LIVE\Client\GFWLive.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@98                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft LifeCam\Microsoft LifeCam.lnk?C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@99                                                                                    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk?C:\Program Files\Microsoft Silverlight\5.1.50709.0\Silverlight.Configuration.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@100                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft\Minecraft.lnk?C:\Program Files (x86)\Minecraft\MinecraftLauncher.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@101                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\My MP4Box GUI\My MP4Box GUI.lnk?C:\Program Files\My MP4Box GUI\My MP4Box GUI.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@102                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager\Nexus Mod Manager (Trace Mode).lnk?C:\Program Files\Nexus Mod Manager\NexusClient.exe?-trace?
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@103                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager\Nexus Mod Manager.lnk?C:\Program Files\Nexus Mod Manager\NexusClient.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@104                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\GeForce Experience.lnk?C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@105                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\3D Vision Photo Viewer.lnk?C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@106                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\3D Vision preview pack 1.lnk?C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstlink.exe?/show?
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@107                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2\OpenOffice Base.lnk?C:\Program Files (x86)\OpenOffice 4\program\sbase.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@108                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2\OpenOffice Calc.lnk?C:\Program Files (x86)\OpenOffice 4\program\scalc.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@109                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2\OpenOffice Draw.lnk?C:\Program Files (x86)\OpenOffice 4\program\sdraw.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@110                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2\OpenOffice Impress.lnk?C:\Program Files (x86)\OpenOffice 4\program\simpress.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@111                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2\OpenOffice Math.lnk?C:\Program Files (x86)\OpenOffice 4\program\smath.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@112                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2\OpenOffice Writer.lnk?C:\Program Files (x86)\OpenOffice 4\program\swriter.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@113                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2\OpenOffice.lnk?C:\Program Files (x86)\OpenOffice 4\program\soffice.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@114                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin\Origin Fehlermelder.lnk?C:\Program Files (x86)\Origin\OriginER.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@115                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin\Origin.lnk?C:\Program Files (x86)\Origin\Origin.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@116                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch\Overwatch.lnk?C:\Program Files (x86)\Overwatch\Overwatch Launcher.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@117                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent\qBittorrent.lnk?C:\Program Files (x86)\qBittorrent\qbittorrent.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@118                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\QuickTime deinstallieren.lnk?C:\Windows\SysWOW64\msiexec.exe?/i {627FFC10-CE0A-497F-BA2B-208CAC638010} /qf?
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@119                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\QuickTime Player.lnk?C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@120                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Red Giant\Red Giant Link.lnk?C:\Program Files (x86)\Red Giant\Common\Red Giant Link.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@121                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony\Vegas Pro 13.0\Vegas Pro 13.0 (64-bit).lnk?C:\Program Files\Sony\Vegas Pro 13.0\vegas130.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@122                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk?C:\Program Files (x86)\Steam\Steam.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@123                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player - reset preferences and cache files.lnk?C:\Program Files\VideoLAN\VLC\vlc.exe?--reset-config --reset-plugins-cache vlc://quit?
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@124                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player skinned.lnk?C:\Program Files\VideoLAN\VLC\vlc.exe?-Iskins?
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@125                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player.lnk?C:\Program Files\VideoLAN\VLC\vlc.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@126                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.0\Demos\vulkaninfo.lnk?C:\Program Files (x86)\VulkanRT\1.0.3.0\vulkaninfo.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@127                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.0\Demos\vulkaninfo32.lnk?C:\Program Files (x86)\VulkanRT\1.0.3.0\vulkaninfo32.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@128                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk?C:\Program Files\WinRAR\WinRAR.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@129                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\x264vfw\Configure x264vfw.lnk?C:\Windows\SysWOW64\rundll32.exe?x264vfw.dll,Configure?
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@130                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\x264vfw\Configure x264vfw64.lnk?C:\Windows\System32\rundll32.exe?x264vfw64.dll,Configure?
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@131                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast LAN\XFast LAN Konsole.lnk?C:\WINDOWS\System32\cmd.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@132                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast USB\XFast USB.LNK?C:\Program Files (x86)\XFastUSB\XFastUsb.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@133                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xinorbis6\Uninstall.lnk?C:\Program Files (x86)\freshney.org\Xinorbis6\UninstallXinorbis.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@134                                                                                  C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GFACE Launcher\GFACE.lnk?D:\GFACE\GFACE Launcher\live\gflauncher.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@135                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TreeSize Free\TreeSize Free (Administrator).lnk?C:\Program Files (x86)\JAM Software\TreeSize Free\TreeSizeFree.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@137                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends\League of Legends.lnk?D:\League of Legends\lol.launcher.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@139                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk?C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\Silverlight.Configuration.exe??
Reg    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\UFH\SHC@140                                                                                  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexicon\Alpha\Uninstall Lexicon Alpha Driver Installer.lnk?C:\ProgramData\{E51ADF6A-7916-46B4-96C1-40D98D096077}\AlphaDriverInstaller.exe?REMOVE=TRUE UNINSTALL=YES MODIFY=FALSE?

---- EOF - GMER 2.2 ----

LChan 16.10.2016 22:55
Hier das FRST Logfile

Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 16-10-2016
durchgeführt von Viral Nature (Administrator) auf VIRALNATURE-PC (16-10-2016 23:35:35)
Gestartet von D:\Users\Viral Nature\Downloads
Geladene Profile: Viral Nature (Verfügbare Profile: Viral Nature)
Platform: Windows 10 Pro Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Chip Digital GmbH) C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe
(cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\spd.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
() C:\Windows\System32\PnkBstrA.exe
(DeviceVM, Inc.) C:\Program Files (x86)\DeviceVM\SmartView\SmartViewService.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(DeviceVM, Inc.) C:\Program Files (x86)\DeviceVM\SmartView Software Updater\WCUService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.25061.0_x64__8wekyb3d8bbwe\Video.UI.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1608.2213.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.25021.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13307496 2011-10-17] (Realtek Semiconductor)
HKLM\...\Run: [XFast LAN] => C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe [1441152 2011-10-19] (cFos Software GmbH)
HKLM\...\Run: [THXCfg64] => C:\Windows\system32\THXCfg64.dll [26624 2011-05-13] (Creative Technology Ltd.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-03-30] (Adobe Systems Incorporated)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\nvspcap64.dll [1842744 2016-09-17] (NVIDIA Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-26] (Intel Corporation)
HKLM-x32\...\Run: [XFastUSB] => C:\Program Files (x86)\XFastUSB\XFastUsb.exe [5019360 2015-08-11] (FNet Co., Ltd.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [34672 2008-06-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [THX TruStudio NB Settings] => C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe [909824 2011-05-19] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [SmartViewAgent] => C:\Program Files (x86)\DeviceVM\SmartView\SmartViewAgent.exe [948504 2010-09-02] ()
HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [135536 2010-12-13] (Microsoft Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-10-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [36760 2010-10-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [821144 2010-10-25] (Adobe Systems Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-06-17] (Apple Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9083840 2016-10-13] (AVAST Software)
HKLM-x32\...\Run: [CAM] => C:\Program Files (x86)\NZXT\CAM\CAMLauncher.exe [47216 2016-06-04] ()
HKLM-x32\...\Run: [MailCheck IE Broker] => C:\Program Files (x86)\GMX MailCheck\IE\GMX_MailCheck_Broker.exe [2317672 2016-07-21] (1und1 Mail und Media GmbH)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,userinit.exe,
HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2860832 2016-10-13] (Valve Corporation)
HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [1381648 2015-08-17] (Lavasoft)
HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\Run: [Spotify Web Helper] => C:\Users\Viral Nature\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1483888 2016-10-13] (Spotify Ltd)
HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\Run: [Spotify] => C:\Users\Viral Nature\AppData\Roaming\Spotify\Spotify.exe [6884976 2016-10-13] (Spotify Ltd)
HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3503088 2016-10-06] (Electronic Arts)
HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3582240 2016-06-02] (Nota Inc.)
HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8641240 2016-02-12] (Piriform Ltd)
HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [29635712 2016-09-12] (Skype Technologies S.A.)
HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\Run: [gflauncher] => "D:\GFACE\GFACE Launcher\live\gflauncher.exe" --autostart
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-09-26] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-07-25]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe (McAfee, Inc.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Winsock: Catalog9-x64 01 C:\Windows\system32\LavasoftTcpService64.dll [422400 2015-08-17] (Lavasoft Limited)
Winsock: Catalog9-x64 02 C:\Windows\system32\LavasoftTcpService64.dll [422400 2015-08-17] (Lavasoft Limited)
Winsock: Catalog9-x64 03 C:\Windows\system32\LavasoftTcpService64.dll [422400 2015-08-17] (Lavasoft Limited)
Winsock: Catalog9-x64 04 C:\Windows\system32\LavasoftTcpService64.dll [422400 2015-08-17] (Lavasoft Limited)
Winsock: Catalog9-x64 05 C:\Windows\system32\LavasoftTcpService64.dll [422400 2015-08-17] (Lavasoft Limited)
Hosts: 0.0.0.1        mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.2
Tcpip\..\Interfaces\{665670f5-9fb6-435b-9067-595dd022e219}: [DhcpNameServer] 192.168.0.1 192.168.0.2

Internet Explorer:
==================
HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.gmx.net/tb/ie_startpage
URLSearchHook: HKU\S-1-5-21-3774873185-1156131496-3032177255-1000 - SearchHook Class - {0F3DC9E0-C459-4a40-BCF8-747BD9322E10} - C:\Program Files (x86)\DeviceVM\SmartView\AddressBarSearch.dll (DeviceVM, Inc.)
SearchScopes: HKU\S-1-5-21-3774873185-1156131496-3032177255-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3774873185-1156131496-3032177255-1000 -> {18DF8067-2881-433A-9ECA-37AD1D1982FE} URL = hxxp://go.web.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8
SearchScopes: HKU\S-1-5-21-3774873185-1156131496-3032177255-1000 -> {245ABF92-DA95-49E9-8EE3-DD11A1A0530C} URL = hxxp://go.1und1.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8
SearchScopes: HKU\S-1-5-21-3774873185-1156131496-3032177255-1000 -> {30EF1120-46AA-4e49-A6AA-15BB6C523C43} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5480255188&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=de&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3774873185-1156131496-3032177255-1000 -> {6EAB1EC4-8D2A-4509-A600-9B43F8E15CEE} URL = hxxp://go.mail.com/tb/en-us/ie_searchplugin/?q={searchTerms}&enc=UTF-8
SearchScopes: HKU\S-1-5-21-3774873185-1156131496-3032177255-1000 -> {9BD36D88-9790-456D-8B33-FC8EA256391F} URL = hxxp://go.gmx.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
BHO: GMX MailCheck BHO -> {BF42D4A8-016E-4fcd-B1EB-837659FD77C6} -> C:\Program Files\GMX MailCheck\IE\GMX_MailCheck.dll [2016-07-21] (1und1 Mail und Media GmbH)
BHO-x32: ContributeBHO Class -> {074C1DC5-9320-4A9A-947D-C042949C6216} -> C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll [2011-03-19] (Adobe Systems, Inc.)
BHO-x32: SmartView VisualBookmark -> {0E5680D1-BF44-4929-94AF-FD30D784AD1D} -> C:\Program Files (x86)\DeviceVM\SmartView\SmartView.dll [2010-09-02] (DeviceVM, Inc.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-10-25] (Adobe Systems Incorporated)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-10-25] (Adobe Systems Incorporated)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
BHO-x32: GMX MailCheck BHO -> {BF42D4A8-016E-4fcd-B1EB-837659FD77C6} -> C:\Program Files (x86)\GMX MailCheck\IE\GMX_MailCheck.dll [2016-07-21] (1und1 Mail und Media GmbH)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-10-25] (Adobe Systems Incorporated)
Toolbar: HKLM - GMX MailCheck - {C424171E-592A-415a-9EB1-DFD6D95D3530} - C:\Program Files\GMX MailCheck\IE\GMX_MailCheck.dll [2016-07-21] (1und1 Mail und Media GmbH)
Toolbar: HKLM-x32 - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll [2011-03-19] (Adobe Systems, Inc.)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-10-25] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - GMX MailCheck - {C424171E-592A-415a-9EB1-DFD6D95D3530} - C:\Program Files (x86)\GMX MailCheck\IE\GMX_MailCheck.dll [2016-07-21] (1und1 Mail und Media GmbH)
Handler: gmx - {8FAF0273-9CA8-4efc-9536-1E35E254D5CD} - C:\Program Files\GMX MailCheck\IE\GMX_MailCheck.dll [2016-07-21] (1und1 Mail und Media GmbH)
Handler-x32: gmx - {8FAF0273-9CA8-4efc-9536-1E35E254D5CD} - C:\Program Files (x86)\GMX MailCheck\IE\GMX_MailCheck.dll [2016-07-21] (1und1 Mail und Media GmbH)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: yxd6dhiv.default
FF ProfilePath: C:\Users\Viral Nature\AppData\Roaming\Mozilla\Firefox\Profiles\yxd6dhiv.default [2016-10-16]
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\yxd6dhiv.default -> Bing
FF Homepage: Mozilla\Firefox\Profiles\yxd6dhiv.default -> about:home
FF Extension: (Firefox Hotfix) - C:\Users\Viral Nature\AppData\Roaming\Mozilla\Firefox\Profiles\yxd6dhiv.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-04]
FF SearchPlugin: C:\Users\Viral Nature\AppData\Roaming\Mozilla\Firefox\Profiles\yxd6dhiv.default\searchplugins\norton-safe-search.xml [2016-07-27]
FF Extension: (Skype) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-05-25]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-26]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-26]
FF HKLM-x32\...\Firefox\Extensions: [{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}] - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}
FF Extension: (Adobe Contribute Toolbar) - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2015-08-15] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2015-08-15] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_185.dll [2016-10-12] ()
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [Keine Datei]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_23_0_0_185.dll [2016-10-12] ()
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [Keine Datei]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-09-17] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-09-17] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-3774873185-1156131496-3032177255-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2016-09-27] ()

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11908&prt=cr
CHR DefaultSearchKeyword: Default -> NortonSafe
CHR DefaultSuggestURL: Default -> hxxps://ss-sym.search.ask.com/ss?q={searchTerms}&li=ff
CHR Profile: C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default [2016-10-13]
CHR Extension: (Google Docs) - C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-18]
CHR Extension: (Google Drive) - C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-20]
CHR Extension: (Adblock Plus) - C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-09-03]
CHR Extension: (Google-Suche) - C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-11]
CHR Extension: (Norton Home Page for Chrome) - C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejbdobdndcjhdmljipngpeoekdinlohe [2016-07-27]
CHR Extension: (Avast SafePrice) - C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-10-12]
CHR Extension: (Google Docs Offline) - C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Avast Online Security) - C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-06-17]
CHR Extension: (Norton Safe) - C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmgcfemagnogdodbambjhdcmfcpicngl [2016-09-03]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-05]
CHR Extension: (Google Mail) - C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-18]
CHR Extension: (Chrome Media Router) - C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-12]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <nicht gefunden>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <nicht gefunden>

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-09-26] (AVAST Software)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2015-10-23] (BitRaider, LLC)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1364096 2016-05-25] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1687680 2016-05-25] (Microsoft Corporation)
R2 cFosSpeedS; C:\Program Files\ASRock\XFast LAN\spd.exe [395136 2011-10-19] (cFos Software GmbH)
R2 chip1click; C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe [91136 2016-08-29] (Chip Digital GmbH) [Datei ist nicht signiert]
S3 DAUpdaterSvc; D:\SteamLibrary\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe [25832 2016-08-17] (BioWare)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [388968 2015-12-24] (Digital Wave Ltd.)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [249104 2016-10-04] (EasyAntiCheat Ltd)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-09-19] (Hi-Rez Studios) [Datei ist nicht signiert]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [337888 2016-05-03] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-02-21] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-21] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.334\McCHSvc.exe [293128 2016-05-31] (McAfee, Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [458808 2016-09-17] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [458808 2016-09-17] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1165368 2016-09-17] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2142728 2016-10-06] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2209296 2016-10-06] (Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2016-09-05] ()
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2016-09-05] ()
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-09-15] (Microsoft Corporation)
R2 SmartViewService; C:\Program Files (x86)\DeviceVM\SmartView\SmartViewService.exe [125216 2010-09-02] (DeviceVM, Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Datei ist nicht signiert]
R2 WCUService; C:\Program Files (x86)\DeviceVM\SmartView Software Updater\WCUService.exe [456976 2010-09-02] (DeviceVM, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
S2 HuaweiHiSuiteService64.exe; "C:\ProgramData\HandSetService\HuaweiHiSuiteService64.exe" -/service [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R0 asahci64; C:\Windows\System32\drivers\asahci64.sys [49760 2011-09-21] (Asmedia Technology)
R0 AsrRamDisk; C:\Windows\System32\drivers\AsrRamDisk.sys [31016 2012-01-13] (ASRock Inc.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-09-26] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-09-26] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-09-26] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-09-26] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-26] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-09-26] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-09-26] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-09-26] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-13] (AVAST Software)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2016-09-25] (BitRaider)
S3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-08-15] (Disc Soft Ltd)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [15936 2015-08-11] (FNet Co., Ltd.)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [25536 2012-02-09] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [25536 2012-02-09] ()
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [44992 2012-02-09] ()
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-10-16] (Malwarebytes)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
S0 megasas2i; C:\Windows\System32\drivers\MegaSas2i.sys [64352 2016-10-05] (Avago Technologies)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_674733509ab83d72\nvlddmkm.sys [14242872 2016-09-20] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [29240 2016-09-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47672 2016-09-17] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek                                            )
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 WinRing0_1_2_0; C:\Program Files (x86)\NZXT\CAM\CAM_Client_V3.sys [14544 2016-09-15] (OpenLibSys.org)
S3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2016-07-25] ()
U3 axloruog; C:\Users\Viral Nature\AppData\Local\Temp\axloruog.sys [56584 2016-10-16] (GMER) [Datei ist nicht signiert]
U3 idsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-10-16 23:35 - 2016-10-16 23:35 - 00000000 ____D C:\FRST
2016-10-16 22:48 - 2016-10-16 23:03 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-10-13 22:55 - 2016-10-13 22:55 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_WinUSB_01007.Wdf
2016-10-13 22:53 - 2016-10-13 22:53 - 00000000 __HDC C:\ProgramData\{E51ADF6A-7916-46B4-96C1-40D98D096077}
2016-10-13 22:53 - 2016-10-13 22:53 - 00000000 ____D C:\Users\Viral Nature\AppData\Local\PackageAware
2016-10-13 22:53 - 2016-10-13 22:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexicon
2016-10-13 22:53 - 2016-10-13 22:53 - 00000000 ____D C:\Program Files\Lexicon
2016-10-13 19:58 - 2016-10-03 22:09 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-13 19:58 - 2016-10-03 22:09 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-13 17:43 - 2016-10-05 12:03 - 01705976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-10-13 17:43 - 2016-10-05 11:51 - 01430720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-10-13 17:43 - 2016-10-05 11:50 - 02256592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-10-13 17:43 - 2016-10-05 11:50 - 00116576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2016-10-13 17:43 - 2016-10-05 11:49 - 01980768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-10-13 17:43 - 2016-10-05 11:48 - 01022304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2016-10-13 17:43 - 2016-10-05 11:46 - 03892352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-10-13 17:43 - 2016-10-05 11:46 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-10-13 17:43 - 2016-10-05 11:46 - 00980824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-10-13 17:43 - 2016-10-05 11:45 - 20965240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-10-13 17:43 - 2016-10-05 11:41 - 00545944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-10-13 17:43 - 2016-10-05 11:31 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2016-10-13 17:43 - 2016-10-05 11:28 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2016-10-13 17:43 - 2016-10-05 11:28 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2016-10-13 17:43 - 2016-10-05 11:28 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2016-10-13 17:43 - 2016-10-05 11:27 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-10-13 17:43 - 2016-10-05 11:27 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-13 17:43 - 2016-10-05 11:26 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2016-10-13 17:43 - 2016-10-05 11:26 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2016-10-13 17:43 - 2016-10-05 11:26 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2016-10-13 17:43 - 2016-10-05 11:26 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2016-10-13 17:43 - 2016-10-05 11:26 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2016-10-13 17:43 - 2016-10-05 11:25 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-10-13 17:43 - 2016-10-05 11:25 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2016-10-13 17:43 - 2016-10-05 11:25 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2016-10-13 17:43 - 2016-10-05 11:25 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2016-10-13 17:43 - 2016-10-05 11:24 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2016-10-13 17:43 - 2016-10-05 11:23 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2016-10-13 17:43 - 2016-10-05 11:23 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2016-10-13 17:43 - 2016-10-05 11:23 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-10-13 17:43 - 2016-10-05 11:23 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-10-13 17:43 - 2016-10-05 11:21 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-10-13 17:43 - 2016-10-05 11:21 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2016-10-13 17:43 - 2016-10-05 11:21 - 00310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-10-13 17:43 - 2016-10-05 11:20 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2016-10-13 17:43 - 2016-10-05 11:18 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-10-13 17:43 - 2016-10-05 11:18 - 00858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2016-10-13 17:43 - 2016-10-05 11:17 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2016-10-13 17:43 - 2016-10-05 11:16 - 19418624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-10-13 17:43 - 2016-10-05 11:16 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-10-13 17:43 - 2016-10-05 11:15 - 07625728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-10-13 17:43 - 2016-10-05 11:15 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2016-10-13 17:43 - 2016-10-05 11:14 - 19416576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-10-13 17:43 - 2016-10-05 11:14 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-10-13 17:43 - 2016-10-05 11:14 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-10-13 17:43 - 2016-10-05 11:13 - 12345856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-10-13 17:43 - 2016-10-05 11:13 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2016-10-13 17:43 - 2016-10-05 11:11 - 12174848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-10-13 17:43 - 2016-10-05 11:11 - 06108672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-10-13 17:43 - 2016-10-05 11:11 - 06043136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-10-13 17:43 - 2016-10-05 11:11 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2016-10-13 17:43 - 2016-10-05 11:10 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-10-13 17:43 - 2016-10-05 11:09 - 07467520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-10-13 17:43 - 2016-10-05 11:09 - 03369984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2016-10-13 17:43 - 2016-10-05 11:09 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-10-13 17:43 - 2016-10-05 11:09 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2016-10-13 17:43 - 2016-10-05 11:09 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-10-13 17:43 - 2016-10-05 11:09 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-10-13 17:43 - 2016-10-05 11:08 - 02356736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-10-13 17:43 - 2016-10-05 11:08 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2016-10-13 17:43 - 2016-10-05 11:08 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-10-13 17:43 - 2016-10-05 11:07 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-10-13 17:43 - 2016-10-05 11:07 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2016-10-13 17:43 - 2016-10-05 11:07 - 02646016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-10-13 17:43 - 2016-10-05 11:07 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2016-10-13 17:43 - 2016-10-05 11:07 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2016-10-13 17:43 - 2016-10-05 11:07 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-10-13 17:43 - 2016-10-05 11:06 - 02999296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-10-13 17:43 - 2016-10-05 11:06 - 02254336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-10-13 17:43 - 2016-10-05 11:06 - 02005504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-10-13 17:43 - 2016-10-05 11:06 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-10-13 17:43 - 2016-10-05 11:06 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-10-13 17:43 - 2016-10-05 11:06 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-10-13 17:43 - 2016-10-05 11:06 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2016-10-13 17:43 - 2016-10-05 11:06 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-10-13 17:43 - 2016-10-05 11:05 - 03105792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-10-13 17:43 - 2016-10-05 11:05 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-10-13 17:40 - 2016-10-05 12:35 - 00279904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-10-13 17:40 - 2016-10-05 12:34 - 01051104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-10-13 17:40 - 2016-10-05 12:34 - 00894088 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-10-13 17:40 - 2016-10-05 12:33 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-10-13 17:40 - 2016-10-05 12:31 - 02213248 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-10-13 17:40 - 2016-10-05 12:31 - 01353768 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-10-13 17:40 - 2016-10-05 12:31 - 01172472 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-10-13 17:40 - 2016-10-05 12:30 - 07812448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-10-13 17:40 - 2016-10-05 12:22 - 01181536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-10-13 17:40 - 2016-10-05 12:17 - 01322848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2016-10-13 17:40 - 2016-10-05 12:16 - 00187232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-10-13 17:40 - 2016-10-05 12:13 - 02750384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-10-13 17:40 - 2016-10-05 12:13 - 01859264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-10-13 17:40 - 2016-10-05 12:13 - 00146784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2016-10-13 17:40 - 2016-10-05 12:12 - 02446696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-10-13 17:40 - 2016-10-05 12:12 - 01112928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-10-13 17:40 - 2016-10-05 12:12 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-10-13 17:40 - 2016-10-05 12:09 - 22219328 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-10-13 17:40 - 2016-10-05 12:09 - 04129928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-10-13 17:40 - 2016-10-05 12:09 - 01071728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-10-13 17:40 - 2016-10-05 12:09 - 00244816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-10-13 17:40 - 2016-10-05 12:09 - 00064352 _____ (Avago Technologies) C:\WINDOWS\system32\Drivers\MegaSas2i.sys
2016-10-13 17:40 - 2016-10-05 12:08 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-10-13 17:40 - 2016-10-05 12:04 - 02537824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-10-13 17:40 - 2016-10-05 12:04 - 00628032 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-10-13 17:40 - 2016-10-05 11:44 - 22568960 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-10-13 17:40 - 2016-10-05 11:38 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-10-13 17:40 - 2016-10-05 11:38 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2016-10-13 17:40 - 2016-10-05 11:36 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-13 17:40 - 2016-10-05 11:36 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-10-13 17:40 - 2016-10-05 11:35 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2016-10-13 17:40 - 2016-10-05 11:35 - 00327680 _____ C:\WINDOWS\system32\wc_storage.dll
2016-10-13 17:40 - 2016-10-05 11:35 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2016-10-13 17:40 - 2016-10-05 11:35 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-10-13 17:40 - 2016-10-05 11:35 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2016-10-13 17:40 - 2016-10-05 11:34 - 00463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2016-10-13 17:40 - 2016-10-05 11:34 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-10-13 17:40 - 2016-10-05 11:33 - 00651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-10-13 17:40 - 2016-10-05 11:33 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-10-13 17:40 - 2016-10-05 11:33 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-10-13 17:40 - 2016-10-05 11:33 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2016-10-13 17:40 - 2016-10-05 11:32 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-10-13 17:40 - 2016-10-05 11:32 - 00379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-10-13 17:40 - 2016-10-05 11:32 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.HostName.dll
2016-10-13 17:40 - 2016-10-05 11:32 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-10-13 17:40 - 2016-10-05 11:31 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2016-10-13 17:40 - 2016-10-05 11:31 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-10-13 17:40 - 2016-10-05 11:31 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-10-13 17:40 - 2016-10-05 11:31 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2016-10-13 17:40 - 2016-10-05 11:31 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2016-10-13 17:40 - 2016-10-05 11:31 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-10-13 17:40 - 2016-10-05 11:30 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2016-10-13 17:40 - 2016-10-05 11:29 - 09129984 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-10-13 17:40 - 2016-10-05 11:29 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-10-13 17:40 - 2016-10-05 11:29 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-10-13 17:40 - 2016-10-05 11:29 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-10-13 17:40 - 2016-10-05 11:29 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2016-10-13 17:40 - 2016-10-05 11:28 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-10-13 17:40 - 2016-10-05 11:28 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-10-13 17:40 - 2016-10-05 11:28 - 00406016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-10-13 17:40 - 2016-10-05 11:27 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-10-13 17:40 - 2016-10-05 11:26 - 23680512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-10-13 17:40 - 2016-10-05 11:26 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-10-13 17:40 - 2016-10-05 11:25 - 01589248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-10-13 17:40 - 2016-10-05 11:24 - 13434368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-10-13 17:40 - 2016-10-05 11:24 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-10-13 17:40 - 2016-10-05 11:23 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-10-13 17:40 - 2016-10-05 11:23 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2016-10-13 17:40 - 2016-10-05 11:22 - 13081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-10-13 17:40 - 2016-10-05 11:22 - 07654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-10-13 17:40 - 2016-10-05 11:22 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-10-13 17:40 - 2016-10-05 11:22 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-10-13 17:40 - 2016-10-05 11:21 - 08075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-10-13 17:40 - 2016-10-05 11:21 - 01364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-10-13 17:40 - 2016-10-05 11:21 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2016-10-13 17:40 - 2016-10-05 11:20 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-10-13 17:40 - 2016-10-05 11:20 - 00804864 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-10-13 17:40 - 2016-10-05 11:20 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-10-13 17:40 - 2016-10-05 11:19 - 02390016 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2016-10-13 17:40 - 2016-10-05 11:19 - 02265088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-10-13 17:40 - 2016-10-05 11:19 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-10-13 17:40 - 2016-10-05 11:19 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-10-13 17:40 - 2016-10-05 11:19 - 00779776 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2016-10-13 17:40 - 2016-10-05 11:18 - 01656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-10-13 17:40 - 2016-10-05 11:18 - 00983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-10-13 17:40 - 2016-10-05 11:18 - 00911872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-10-13 17:40 - 2016-10-05 11:18 - 00759296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-10-13 17:40 - 2016-10-05 11:17 - 08126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-10-13 17:40 - 2016-10-05 11:17 - 04136960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-10-13 17:40 - 2016-10-05 11:17 - 02914304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-10-13 17:40 - 2016-10-05 11:17 - 01493504 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-10-13 17:40 - 2016-10-05 11:16 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-10-13 17:40 - 2016-10-05 11:16 - 04747776 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-10-13 17:40 - 2016-10-05 11:16 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-10-13 17:40 - 2016-10-05 11:16 - 00765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-10-13 17:40 - 2016-10-05 11:15 - 03617792 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-10-13 17:40 - 2016-10-05 11:15 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-10-13 17:40 - 2016-10-05 11:15 - 01980416 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-10-13 17:40 - 2016-10-05 11:15 - 01840640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-10-13 17:40 - 2016-10-05 11:15 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-10-13 17:40 - 2016-10-05 11:15 - 00833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-10-13 17:40 - 2016-10-05 11:15 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-10-13 17:40 - 2016-10-05 11:15 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-10-13 17:40 - 2016-10-05 11:14 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-10-13 17:40 - 2016-10-05 11:14 - 02667520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-10-13 17:40 - 2016-10-05 11:14 - 02476544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-10-13 17:40 - 2016-10-05 11:14 - 01778176 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-10-13 17:40 - 2016-10-05 11:14 - 01013760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-10-13 17:40 - 2016-10-05 11:14 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-10-13 17:40 - 2016-10-05 11:14 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-10-13 17:40 - 2016-10-05 11:13 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-10-13 17:40 - 2016-10-05 11:12 - 01107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-10-13 17:40 - 2016-10-05 11:12 - 00998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2016-10-13 17:40 - 2016-10-05 11:12 - 00924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-10-13 17:40 - 2016-10-05 11:11 - 03496960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-10-13 17:40 - 2016-10-05 02:01 - 00446124 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-10-13 17:40 - 2016-09-07 07:34 - 00360040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-10-13 17:34 - 2016-10-13 17:34 - 00293352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys
2016-10-13 17:32 - 2016-10-13 17:32 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2016-10-13 17:32 - 2016-10-13 17:32 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Diagnostics.dll
2016-10-11 23:00 - 2016-10-16 22:43 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-10-11 23:00 - 2016-10-16 22:39 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-10-11 23:00 - 2016-10-11 23:00 - 00001191 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-10-11 23:00 - 2016-10-11 23:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-10-11 23:00 - 2016-10-11 23:00 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-10-11 23:00 - 2016-10-11 23:00 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-10-11 23:00 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-10-11 23:00 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-10-11 19:38 - 2016-10-11 19:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2016-10-08 22:07 - 2016-10-08 22:07 - 00000000 ____D C:\Users\Viral Nature\AppData\LocalLow\Lince Works
2016-10-08 16:26 - 2016-10-08 16:26 - 00000000 ____D C:\Users\Viral Nature\AppData\Local\Sniper3
2016-10-08 13:43 - 2016-10-08 13:43 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\JAM Software
2016-10-08 13:43 - 2016-10-08 13:43 - 00000000 ____D C:\Users\Viral Nature\AppData\Local\Downloaded Installations
2016-10-08 13:43 - 2016-10-08 13:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TreeSize Free
2016-10-08 13:43 - 2016-10-08 13:43 - 00000000 ____D C:\Program Files (x86)\JAM Software
2016-10-08 13:43 - 2016-10-08 13:43 - 00000000 ____D C:\Program Files (x86)\Chip Digital GmbH
2016-10-04 18:39 - 2016-10-06 16:03 - 00461560 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2016-10-04 18:38 - 2016-10-04 17:42 - 00249104 _____ (EasyAntiCheat Ltd) C:\WINDOWS\SysWOW64\EasyAntiCheat.exe
2016-10-04 17:42 - 2016-10-04 17:42 - 00001228 _____ C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\toast.lnk
2016-10-04 17:41 - 2016-10-08 02:44 - 00000000 ____D C:\ProgramData\GFACE
2016-10-03 18:03 - 2016-09-15 20:14 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-10-03 18:03 - 2016-09-15 19:40 - 00965472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2016-10-03 18:03 - 2016-09-15 19:35 - 00455040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2016-10-03 18:03 - 2016-09-15 19:33 - 00083120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-10-03 18:03 - 2016-09-15 19:30 - 00646136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-10-03 18:03 - 2016-09-15 19:30 - 00354264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-10-03 18:03 - 2016-09-15 19:29 - 01377016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-10-03 18:03 - 2016-09-15 19:29 - 01117024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2016-10-03 18:03 - 2016-09-15 19:29 - 00603488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-10-03 18:03 - 2016-09-15 19:29 - 00512416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2016-10-03 18:03 - 2016-09-15 19:29 - 00081760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2016-10-03 18:03 - 2016-09-15 19:28 - 00498960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2016-10-03 18:03 - 2016-09-15 19:27 - 05622088 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-10-03 18:03 - 2016-09-15 19:27 - 00553312 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-10-03 18:03 - 2016-09-15 19:27 - 00434528 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-10-03 18:03 - 2016-09-15 19:25 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-03 18:03 - 2016-09-15 19:23 - 00170960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-10-03 18:03 - 2016-09-15 19:22 - 00975744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2016-10-03 18:03 - 2016-09-15 19:22 - 00860512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-10-03 18:03 - 2016-09-15 19:21 - 01218912 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-10-03 18:03 - 2016-09-15 19:21 - 01000288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-10-03 18:03 - 2016-09-15 19:20 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-10-03 18:03 - 2016-09-15 19:20 - 00634944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2016-10-03 18:03 - 2016-09-15 19:18 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2016-10-03 18:03 - 2016-09-15 19:18 - 01123368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-10-03 18:03 - 2016-09-15 19:18 - 00955528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-10-03 18:03 - 2016-09-15 19:18 - 00404832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-10-03 18:03 - 2016-09-15 19:16 - 02190176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-10-03 18:03 - 2016-09-15 19:16 - 01292640 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-10-03 18:03 - 2016-09-15 19:16 - 01157000 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2016-10-03 18:03 - 2016-09-15 19:16 - 00657760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-10-03 18:03 - 2016-09-15 19:16 - 00527808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-10-03 18:03 - 2016-09-15 19:15 - 00649568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-10-03 18:03 - 2016-09-15 19:15 - 00341936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2016-10-03 18:03 - 2016-09-15 19:15 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-10-03 18:03 - 2016-09-15 19:14 - 01267512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-10-03 18:03 - 2016-09-15 19:14 - 00119648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2016-10-03 18:03 - 2016-09-15 19:13 - 01264912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-10-03 18:03 - 2016-09-15 19:13 - 00113504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2016-10-03 18:03 - 2016-09-15 19:12 - 08158672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-10-03 18:03 - 2016-09-15 19:12 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-10-03 18:03 - 2016-09-15 19:11 - 04673296 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-10-03 18:03 - 2016-09-15 19:11 - 00773168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-10-03 18:03 - 2016-09-15 19:10 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-10-03 18:03 - 2016-09-15 19:10 - 00918848 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-10-03 18:03 - 2016-09-15 19:06 - 01469120 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-10-03 18:03 - 2016-09-15 19:06 - 00587968 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-10-03 18:03 - 2016-09-15 19:06 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2016-10-03 18:03 - 2016-09-15 19:06 - 00387872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2016-10-03 18:03 - 2016-09-15 19:06 - 00050880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-03 18:03 - 2016-09-15 19:03 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-10-03 18:03 - 2016-09-15 19:03 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TempSignedLicenseExchangeTask.dll
2016-10-03 18:03 - 2016-09-15 19:03 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2016-10-03 18:03 - 2016-09-15 19:02 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfksproxy.dll
2016-10-03 18:03 - 2016-09-15 19:01 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2016-10-03 18:03 - 2016-09-15 19:00 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-10-03 18:03 - 2016-09-15 18:59 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovslegacy.dll
2016-10-03 18:03 - 2016-09-15 18:58 - 00491008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-10-03 18:03 - 2016-09-15 18:58 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlancfg.dll
2016-10-03 18:03 - 2016-09-15 18:57 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2016-10-03 18:03 - 2016-09-15 18:57 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-10-03 18:03 - 2016-09-15 18:56 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-10-03 18:03 - 2016-09-15 18:56 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2016-10-03 18:03 - 2016-09-15 18:56 - 00265728 _____ C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2016-10-03 18:03 - 2016-09-15 18:56 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2016-10-03 18:03 - 2016-09-15 18:56 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManagerApi.dll
2016-10-03 18:03 - 2016-09-15 18:55 - 01243136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2016-10-03 18:03 - 2016-09-15 18:55 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-10-03 18:03 - 2016-09-15 18:55 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2016-10-03 18:03 - 2016-09-15 18:55 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-10-03 18:03 - 2016-09-15 18:55 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2016-10-03 18:03 - 2016-09-15 18:54 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2016-10-03 18:03 - 2016-09-15 18:54 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2016-10-03 18:03 - 2016-09-15 18:54 - 00431104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2016-10-03 18:03 - 2016-09-15 18:53 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2016-10-03 18:03 - 2016-09-15 18:53 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2016-10-03 18:03 - 2016-09-15 18:52 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-10-03 18:03 - 2016-09-15 18:51 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-10-03 18:03 - 2016-09-15 18:51 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2016-10-03 18:03 - 2016-09-15 18:50 - 07219200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-10-03 18:03 - 2016-09-15 18:50 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2016-10-03 18:03 - 2016-09-15 18:50 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2016-10-03 18:03 - 2016-09-15 18:49 - 00901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2016-10-03 18:03 - 2016-09-15 18:49 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-10-03 18:03 - 2016-09-15 18:47 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-10-03 18:03 - 2016-09-15 18:47 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2016-10-03 18:03 - 2016-09-15 18:46 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2016-10-03 18:03 - 2016-09-15 18:46 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2016-10-03 18:03 - 2016-09-15 18:46 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ffbroker.dll
2016-10-03 18:03 - 2016-09-15 18:44 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAC3ENC.DLL
2016-10-03 18:03 - 2016-09-15 18:43 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2.dll
2016-10-03 18:03 - 2016-09-15 18:43 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2016-10-03 18:03 - 2016-09-15 18:43 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2016-10-03 18:03 - 2016-09-15 18:43 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-10-03 18:03 - 2016-09-15 18:43 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2016-10-03 18:03 - 2016-09-15 18:43 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2016-10-03 18:03 - 2016-09-15 18:42 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2016-10-03 18:03 - 2016-09-15 18:42 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2016-10-03 18:03 - 2016-09-15 18:41 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-10-03 18:03 - 2016-09-15 18:41 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Printers.dll
2016-10-03 18:03 - 2016-09-15 18:41 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NfcRadioMedia.dll
2016-10-03 18:03 - 2016-09-15 18:40 - 05061120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-10-03 18:03 - 2016-09-15 18:40 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-10-03 18:03 - 2016-09-15 18:40 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2016-10-03 18:03 - 2016-09-15 18:40 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-10-03 18:03 - 2016-09-15 18:40 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-10-03 18:03 - 2016-09-15 18:40 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2016-10-03 18:03 - 2016-09-15 18:40 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2016-10-03 18:03 - 2016-09-15 18:39 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-10-03 18:03 - 2016-09-15 18:39 - 00547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2016-10-03 18:03 - 2016-09-15 18:39 - 00418304 _____ C:\WINDOWS\system32\Windows.Perception.Stub.dll
2016-10-03 18:03 - 2016-09-15 18:39 - 00295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2016-10-03 18:03 - 2016-09-15 18:39 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-10-03 18:03 - 2016-09-15 18:39 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2016-10-03 18:03 - 2016-09-15 18:38 - 01291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2016-10-03 18:03 - 2016-09-15 18:38 - 00730112 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-10-03 18:03 - 2016-09-15 18:38 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2016-10-03 18:03 - 2016-09-15 18:38 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-10-03 18:03 - 2016-09-15 18:38 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-10-03 18:03 - 2016-09-15 18:38 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2016-10-03 18:03 - 2016-09-15 18:38 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2016-10-03 18:03 - 2016-09-15 18:37 - 00743424 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-10-03 18:03 - 2016-09-15 18:37 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2016-10-03 18:03 - 2016-09-15 18:37 - 00390144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-10-03 18:03 - 2016-09-15 18:37 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.dll
2016-10-03 18:03 - 2016-09-15 18:37 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2016-10-03 18:03 - 2016-09-15 18:37 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-10-03 18:03 - 2016-09-15 18:36 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2016-10-03 18:03 - 2016-09-15 18:36 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-10-03 18:03 - 2016-09-15 18:36 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2016-10-03 18:03 - 2016-09-15 18:36 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-10-03 18:03 - 2016-09-15 18:36 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-10-03 18:03 - 2016-09-15 18:36 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-10-03 18:03 - 2016-09-15 18:36 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-10-03 18:03 - 2016-09-15 18:36 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-10-03 18:03 - 2016-09-15 18:36 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-10-03 18:03 - 2016-09-15 18:36 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-10-03 18:03 - 2016-09-15 18:36 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovslegacy.dll
2016-10-03 18:03 - 2016-09-15 18:35 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-10-03 18:03 - 2016-09-15 18:35 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2016-10-03 18:03 - 2016-09-15 18:35 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-10-03 18:03 - 2016-09-15 18:35 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2016-10-03 18:03 - 2016-09-15 18:35 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2016-10-03 18:03 - 2016-09-15 18:35 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2016-10-03 18:03 - 2016-09-15 18:35 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-10-03 18:03 - 2016-09-15 18:35 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-10-03 18:03 - 2016-09-15 18:35 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-10-03 18:03 - 2016-09-15 18:35 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-10-03 18:03 - 2016-09-15 18:35 - 00329728 _____ (Microsoft Corporation)

LChan 16.10.2016 22:56
Teil 2

Code:
C:\WINDOWS\system32\deviceaccess.dll
2016-10-03 18:03 - 2016-09-15 18:35 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2016-10-03 18:03 - 2016-09-15 18:35 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2016-10-03 18:03 - 2016-09-15 18:34 - 00671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-10-03 18:03 - 2016-09-15 18:34 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-10-03 18:03 - 2016-09-15 18:34 - 00424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-10-03 18:03 - 2016-09-15 18:33 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-10-03 18:03 - 2016-09-15 18:32 - 01037312 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2016-10-03 18:03 - 2016-09-15 18:32 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-10-03 18:03 - 2016-09-15 18:31 - 01912320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-10-03 18:03 - 2016-09-15 18:31 - 01553408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-10-03 18:03 - 2016-09-15 18:31 - 01053184 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-10-03 18:03 - 2016-09-15 18:31 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-10-03 18:03 - 2016-09-15 18:30 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-10-03 18:03 - 2016-09-15 18:30 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2016-10-03 18:03 - 2016-09-15 18:30 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-10-03 18:03 - 2016-09-15 18:30 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastLaunch.dll
2016-10-03 18:03 - 2016-09-15 18:29 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2016-10-03 18:03 - 2016-09-15 18:29 - 01082368 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-10-03 18:03 - 2016-09-15 18:29 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2016-10-03 18:03 - 2016-09-15 18:28 - 03288064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-10-03 18:03 - 2016-09-15 18:28 - 00798720 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwcreator.exe
2016-10-03 18:03 - 2016-09-15 18:28 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-03 18:03 - 2016-09-15 18:28 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-10-03 18:03 - 2016-09-15 18:27 - 05111296 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-10-03 18:03 - 2016-09-15 18:27 - 02860032 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-10-03 18:03 - 2016-09-15 18:27 - 01078784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-10-03 18:03 - 2016-09-15 18:27 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-10-03 18:03 - 2016-09-15 18:27 - 00702976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-10-03 18:03 - 2016-09-15 18:27 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2016-10-03 18:03 - 2016-09-15 18:27 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2016-10-03 18:03 - 2016-09-15 18:27 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-10-03 18:03 - 2016-09-15 18:27 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2016-10-03 18:03 - 2016-09-15 18:27 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\manage-bde.exe
2016-10-03 18:03 - 2016-09-15 18:27 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvenotify.exe
2016-10-03 18:03 - 2016-09-15 18:27 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Sens.dll
2016-10-03 18:03 - 2016-09-15 18:26 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2016-10-03 18:03 - 2016-09-15 18:26 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-10-03 18:03 - 2016-09-15 18:26 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-10-03 18:03 - 2016-09-15 18:26 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeui.dll
2016-10-03 18:03 - 2016-09-15 18:25 - 00947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_sr.dll
2016-10-03 18:03 - 2016-09-15 18:25 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2016-10-03 18:03 - 2016-09-15 18:25 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2016-10-03 18:03 - 2016-09-15 18:25 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2016-10-03 18:03 - 2016-09-15 18:24 - 01080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2016-10-03 18:03 - 2016-09-15 18:23 - 03405824 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-10-03 18:03 - 2016-09-15 18:23 - 01361408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-10-03 18:03 - 2016-09-15 18:23 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-10-03 18:03 - 2016-09-15 18:23 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2016-10-03 18:03 - 2016-09-15 18:23 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-10-03 18:03 - 2016-09-15 18:22 - 01709056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-10-03 18:03 - 2016-09-15 18:22 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-10-03 18:03 - 2016-09-15 18:22 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-10-03 18:03 - 2016-09-15 18:22 - 00960000 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-10-03 18:03 - 2016-09-15 18:21 - 02538496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-10-03 18:03 - 2016-09-15 18:21 - 02208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-10-03 18:03 - 2016-09-15 18:21 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-10-03 18:03 - 2016-09-15 18:21 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-10-03 18:03 - 2016-09-15 18:20 - 01535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2016-10-03 18:03 - 2016-09-15 18:20 - 01266176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-10-03 18:03 - 2016-09-15 18:20 - 00845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-10-03 18:03 - 2016-09-15 18:20 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-10-03 18:03 - 2016-09-15 18:20 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2016-10-03 18:03 - 2016-09-15 18:19 - 03202048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-10-03 18:03 - 2016-09-15 18:19 - 01130496 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-10-03 18:03 - 2016-09-15 18:19 - 00903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-10-03 18:03 - 2016-09-15 18:19 - 00788992 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-10-03 18:03 - 2016-09-15 18:19 - 00730112 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-10-03 18:03 - 2016-09-15 18:19 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-10-03 18:03 - 2016-09-15 18:16 - 01817088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2016-10-03 18:03 - 2016-09-15 18:16 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-10-03 18:03 - 2016-09-15 18:16 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2016-10-03 18:03 - 2016-09-15 18:16 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\tspubwmi.dll
2016-10-03 18:03 - 2016-09-15 18:16 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2016-10-03 18:03 - 2016-08-05 10:29 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.UXRes.dll
2016-10-03 18:02 - 2016-09-15 19:37 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-10-03 18:02 - 2016-09-15 19:37 - 00496872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-10-03 18:02 - 2016-09-15 19:37 - 00402352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-10-03 18:02 - 2016-09-15 19:35 - 01570680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-10-03 18:02 - 2016-09-15 19:32 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-10-03 18:02 - 2016-09-15 19:29 - 00823136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2016-10-03 18:02 - 2016-09-15 19:29 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2016-10-03 18:02 - 2016-09-15 19:29 - 00424640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-10-03 18:02 - 2016-09-15 19:29 - 00218008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2016-10-03 18:02 - 2016-09-15 19:29 - 00169056 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2016-10-03 18:02 - 2016-09-15 19:29 - 00127328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\AppVStrm.sys
2016-10-03 18:02 - 2016-09-15 19:29 - 00074080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2016-10-03 18:02 - 2016-09-15 19:29 - 00023392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cmimcext.sys
2016-10-03 18:02 - 2016-09-15 19:27 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-10-03 18:02 - 2016-09-15 19:27 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-10-03 18:02 - 2016-09-15 19:26 - 00090400 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-10-03 18:02 - 2016-09-15 19:25 - 00340320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-10-03 18:02 - 2016-09-15 19:25 - 00280472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeunlock.exe
2016-10-03 18:02 - 2016-09-15 19:25 - 00262960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2016-10-03 18:02 - 2016-09-15 19:24 - 00764936 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-10-03 18:02 - 2016-09-15 19:23 - 01503032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-10-03 18:02 - 2016-09-15 19:22 - 05722320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-10-03 18:02 - 2016-09-15 19:22 - 00433832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2016-10-03 18:02 - 2016-09-15 19:21 - 00272720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2016-10-03 18:02 - 2016-09-15 19:19 - 00361104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2016-10-03 18:02 - 2016-09-15 19:18 - 06654616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-10-03 18:02 - 2016-09-15 19:18 - 00856872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2016-10-03 18:02 - 2016-09-15 19:18 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-10-03 18:02 - 2016-09-15 19:17 - 04311736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-10-03 18:02 - 2016-09-15 19:16 - 07219672 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-10-03 18:02 - 2016-09-15 19:16 - 01738040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-10-03 18:02 - 2016-09-15 19:16 - 00401760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-10-03 18:02 - 2016-09-15 19:16 - 00206096 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-10-03 18:02 - 2016-09-15 19:15 - 00557408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-10-03 18:02 - 2016-09-15 19:15 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-10-03 18:02 - 2016-09-15 19:15 - 00223584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-10-03 18:02 - 2016-09-15 19:15 - 00130912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2016-10-03 18:02 - 2016-09-15 19:14 - 01415752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2016-10-03 18:02 - 2016-09-15 19:14 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2016-10-03 18:02 - 2016-09-15 19:14 - 00988512 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2016-10-03 18:02 - 2016-09-15 19:14 - 00947552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2016-10-03 18:02 - 2016-09-15 19:14 - 00811872 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2016-10-03 18:02 - 2016-09-15 19:14 - 00435040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-10-03 18:02 - 2016-09-15 19:12 - 01472536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-10-03 18:02 - 2016-09-15 19:11 - 01990640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-10-03 18:02 - 2016-09-15 19:11 - 01300600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-10-03 18:02 - 2016-09-15 19:11 - 01066104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-10-03 18:02 - 2016-09-15 19:11 - 00862064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2016-10-03 18:02 - 2016-09-15 19:11 - 00725664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2016-10-03 18:02 - 2016-09-15 19:11 - 00160096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-10-03 18:02 - 2016-09-15 19:08 - 05683712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-10-03 18:02 - 2016-09-15 19:07 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-10-03 18:02 - 2016-09-15 19:07 - 01418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-10-03 18:02 - 2016-09-15 19:07 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2016-10-03 18:02 - 2016-09-15 19:06 - 01046880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-10-03 18:02 - 2016-09-15 19:06 - 00372440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-10-03 18:02 - 2016-09-15 19:03 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cngkeyhelper.dll
2016-10-03 18:02 - 2016-09-15 19:01 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2016-10-03 18:02 - 2016-09-15 19:00 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2016-10-03 18:02 - 2016-09-15 19:00 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2016-10-03 18:02 - 2016-09-15 19:00 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-10-03 18:02 - 2016-09-15 18:59 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2016-10-03 18:02 - 2016-09-15 18:59 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinRtTracing.dll
2016-10-03 18:02 - 2016-09-15 18:58 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-10-03 18:02 - 2016-09-15 18:58 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2016-10-03 18:02 - 2016-09-15 18:58 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2016-10-03 18:02 - 2016-09-15 18:58 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2016-10-03 18:02 - 2016-09-15 18:58 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-10-03 18:02 - 2016-09-15 18:58 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.UserDeviceAssociation.dll
2016-10-03 18:02 - 2016-09-15 18:57 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2016-10-03 18:02 - 2016-09-15 18:57 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2016-10-03 18:02 - 2016-09-15 18:57 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2016-10-03 18:02 - 2016-09-15 18:57 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-10-03 18:02 - 2016-09-15 18:57 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ClipboardServer.dll
2016-10-03 18:02 - 2016-09-15 18:56 - 01300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2016-10-03 18:02 - 2016-09-15 18:56 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2016-10-03 18:02 - 2016-09-15 18:56 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2016-10-03 18:02 - 2016-09-15 18:56 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2016-10-03 18:02 - 2016-09-15 18:56 - 00257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DataExchange.dll
2016-10-03 18:02 - 2016-09-15 18:56 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2016-10-03 18:02 - 2016-09-15 18:55 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2016-10-03 18:02 - 2016-09-15 18:55 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2016-10-03 18:02 - 2016-09-15 18:55 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetworkCollectionAgent.dll
2016-10-03 18:02 - 2016-09-15 18:55 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2016-10-03 18:02 - 2016-09-15 18:55 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2016-10-03 18:02 - 2016-09-15 18:55 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2016-10-03 18:02 - 2016-09-15 18:55 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-10-03 18:02 - 2016-09-15 18:55 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
2016-10-03 18:02 - 2016-09-15 18:55 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2016-10-03 18:02 - 2016-09-15 18:55 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\biwinrt.dll
2016-10-03 18:02 - 2016-09-15 18:55 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2016-10-03 18:02 - 2016-09-15 18:54 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2016-10-03 18:02 - 2016-09-15 18:54 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-10-03 18:02 - 2016-09-15 18:54 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2016-10-03 18:02 - 2016-09-15 18:53 - 00819200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2016-10-03 18:02 - 2016-09-15 18:53 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-10-03 18:02 - 2016-09-15 18:53 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2016-10-03 18:02 - 2016-09-15 18:52 - 01358336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-10-03 18:02 - 2016-09-15 18:52 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2016-10-03 18:02 - 2016-09-15 18:52 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2016-10-03 18:02 - 2016-09-15 18:52 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2016-10-03 18:02 - 2016-09-15 18:52 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprapi.dll
2016-10-03 18:02 - 2016-09-15 18:52 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-10-03 18:02 - 2016-09-15 18:52 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2016-10-03 18:02 - 2016-09-15 18:51 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2016-10-03 18:02 - 2016-09-15 18:50 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pwrshplugin.dll
2016-10-03 18:02 - 2016-09-15 18:49 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2016-10-03 18:02 - 2016-09-15 18:49 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.InkControls.dll
2016-10-03 18:02 - 2016-09-15 18:48 - 01321472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2016-10-03 18:02 - 2016-09-15 18:48 - 01320448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-10-03 18:02 - 2016-09-15 18:48 - 01112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2016-10-03 18:02 - 2016-09-15 18:47 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2016-10-03 18:02 - 2016-09-15 18:47 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2016-10-03 18:02 - 2016-09-15 18:46 - 03305984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-10-03 18:02 - 2016-09-15 18:46 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2016-10-03 18:02 - 2016-09-15 18:46 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2016-10-03 18:02 - 2016-09-15 18:46 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-10-03 18:02 - 2016-09-15 18:45 - 02749440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-10-03 18:02 - 2016-09-15 18:45 - 02642944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-10-03 18:02 - 2016-09-15 18:45 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-03 18:02 - 2016-09-15 18:45 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2016-10-03 18:02 - 2016-09-15 18:44 - 02153984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-10-03 18:02 - 2016-09-15 18:44 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2016-10-03 18:02 - 2016-09-15 18:44 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-10-03 18:02 - 2016-09-15 18:44 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2016-10-03 18:02 - 2016-09-15 18:43 - 03520512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2016-10-03 18:02 - 2016-09-15 18:43 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-10-03 18:02 - 2016-09-15 18:43 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToReceiver.dll
2016-10-03 18:02 - 2016-09-15 18:43 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-10-03 18:02 - 2016-09-15 18:43 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2016-10-03 18:02 - 2016-09-15 18:42 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-10-03 18:02 - 2016-09-15 18:42 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_sr.dll
2016-10-03 18:02 - 2016-09-15 18:42 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2016-10-03 18:02 - 2016-09-15 18:42 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2016-10-03 18:02 - 2016-09-15 18:42 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundMediaPolicy.dll
2016-10-03 18:02 - 2016-09-15 18:41 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-10-03 18:02 - 2016-09-15 18:41 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2016-10-03 18:02 - 2016-09-15 18:41 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2016-10-03 18:02 - 2016-09-15 18:41 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
2016-10-03 18:02 - 2016-09-15 18:41 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-10-03 18:02 - 2016-09-15 18:41 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2016-10-03 18:02 - 2016-09-15 18:41 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2016-10-03 18:02 - 2016-09-15 18:40 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-10-03 18:02 - 2016-09-15 18:40 - 02026496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-10-03 18:02 - 2016-09-15 18:40 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-10-03 18:02 - 2016-09-15 18:40 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2016-10-03 18:02 - 2016-09-15 18:40 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-10-03 18:02 - 2016-09-15 18:40 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2016-10-03 18:02 - 2016-09-15 18:40 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2016-10-03 18:02 - 2016-09-15 18:40 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-10-03 18:02 - 2016-09-15 18:40 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-10-03 18:02 - 2016-09-15 18:40 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2016-10-03 18:02 - 2016-09-15 18:40 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2016-10-03 18:02 - 2016-09-15 18:39 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2016-10-03 18:02 - 2016-09-15 18:39 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2016-10-03 18:02 - 2016-09-15 18:39 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-10-03 18:02 - 2016-09-15 18:39 - 00827904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-10-03 18:02 - 2016-09-15 18:39 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-10-03 18:02 - 2016-09-15 18:39 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2016-10-03 18:02 - 2016-09-15 18:39 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-10-03 18:02 - 2016-09-15 18:39 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-10-03 18:02 - 2016-09-15 18:38 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-10-03 18:02 - 2016-09-15 18:38 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-10-03 18:02 - 2016-09-15 18:38 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkCollectionAgent.dll
2016-10-03 18:02 - 2016-09-15 18:38 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-10-03 18:02 - 2016-09-15 18:38 - 00573952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2016-10-03 18:02 - 2016-09-15 18:38 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-10-03 18:02 - 2016-09-15 18:38 - 00427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2016-10-03 18:02 - 2016-09-15 18:38 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2016-10-03 18:02 - 2016-09-15 18:38 - 00343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2016-10-03 18:02 - 2016-09-15 18:38 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-10-03 18:02 - 2016-09-15 18:38 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-10-03 18:02 - 2016-09-15 18:38 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2016-10-03 18:02 - 2016-09-15 18:38 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2016-10-03 18:02 - 2016-09-15 18:37 - 01507840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2016-10-03 18:02 - 2016-09-15 18:37 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-10-03 18:02 - 2016-09-15 18:37 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-10-03 18:02 - 2016-09-15 18:37 - 00568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-10-03 18:02 - 2016-09-15 18:37 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlancfg.dll
2016-10-03 18:02 - 2016-09-15 18:37 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-10-03 18:02 - 2016-09-15 18:37 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2016-10-03 18:02 - 2016-09-15 18:37 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-10-03 18:02 - 2016-09-15 18:36 - 00719360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2016-10-03 18:02 - 2016-09-15 18:36 - 00648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-10-03 18:02 - 2016-09-15 18:36 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-10-03 18:02 - 2016-09-15 18:36 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2016-10-03 18:02 - 2016-09-15 18:36 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-10-03 18:02 - 2016-09-15 18:36 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-10-03 18:02 - 2016-09-15 18:36 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2016-10-03 18:02 - 2016-09-15 18:36 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-10-03 18:02 - 2016-09-15 18:36 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2016-10-03 18:02 - 2016-09-15 18:36 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2016-10-03 18:02 - 2016-09-15 18:36 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2016-10-03 18:02 - 2016-09-15 18:35 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-10-03 18:02 - 2016-09-15 18:35 - 00472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-10-03 18:02 - 2016-09-15 18:35 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2016-10-03 18:02 - 2016-09-15 18:35 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2016-10-03 18:02 - 2016-09-15 18:35 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchange.dll
2016-10-03 18:02 - 2016-09-15 18:35 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-10-03 18:02 - 2016-09-15 18:35 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rshx32.dll
2016-10-03 18:02 - 2016-09-15 18:34 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2016-10-03 18:02 - 2016-09-15 18:34 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2016-10-03 18:02 - 2016-09-15 18:34 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2016-10-03 18:02 - 2016-09-15 18:34 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-10-03 18:02 - 2016-09-15 18:33 - 03753984 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2016-10-03 18:02 - 2016-09-15 18:33 - 01004032 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-10-03 18:02 - 2016-09-15 18:33 - 00966144 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbe.dll
2016-10-03 18:02 - 2016-09-15 18:33 - 00963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-10-03 18:02 - 2016-09-15 18:33 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-10-03 18:02 - 2016-09-15 18:33 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprapi.dll
2016-10-03 18:02 - 2016-09-15 18:32 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-10-03 18:02 - 2016-09-15 18:32 - 00634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-10-03 18:02 - 2016-09-15 18:31 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwrshplugin.dll
2016-10-03 18:02 - 2016-09-15 18:30 - 03776512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-10-03 18:02 - 2016-09-15 18:30 - 01639424 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-10-03 18:02 - 2016-09-15 18:30 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-10-03 18:02 - 2016-09-15 18:30 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-10-03 18:02 - 2016-09-15 18:30 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2016-10-03 18:02 - 2016-09-15 18:30 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\baaupdate.exe
2016-10-03 18:02 - 2016-09-15 18:29 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-10-03 18:02 - 2016-09-15 18:29 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-10-03 18:02 - 2016-09-15 18:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RelPost.exe
2016-10-03 18:02 - 2016-09-15 18:28 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2016-10-03 18:02 - 2016-09-15 18:28 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-10-03 18:02 - 2016-09-15 18:28 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveprompt.exe
2016-10-03 18:02 - 2016-09-15 18:27 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-10-03 18:02 - 2016-09-15 18:27 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2016-10-03 18:02 - 2016-09-15 18:27 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAC3ENC.DLL
2016-10-03 18:02 - 2016-09-15 18:26 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll
2016-10-03 18:02 - 2016-09-15 18:26 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdechangepin.exe
2016-10-03 18:02 - 2016-09-15 18:25 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-10-03 18:02 - 2016-09-15 18:25 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-10-03 18:02 - 2016-09-15 18:25 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundMediaPolicy.dll
2016-10-03 18:02 - 2016-09-15 18:24 - 04596224 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2016-10-03 18:02 - 2016-09-15 18:24 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-10-03 18:02 - 2016-09-15 18:24 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-10-03 18:02 - 2016-09-15 18:24 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-10-03 18:02 - 2016-09-15 18:24 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-10-03 18:02 - 2016-09-15 18:23 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-10-03 18:02 - 2016-09-15 18:23 - 01040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2016-10-03 18:02 - 2016-09-15 18:23 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-10-03 18:02 - 2016-09-15 18:23 - 00611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-10-03 18:02 - 2016-09-15 18:23 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-10-03 18:02 - 2016-09-15 18:22 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-10-03 18:02 - 2016-09-15 18:22 - 00857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2016-10-03 18:02 - 2016-09-15 18:22 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-10-03 18:02 - 2016-09-15 18:22 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2016-10-03 18:02 - 2016-09-15 18:21 - 00971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-10-03 18:02 - 2016-09-15 18:20 - 02424320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2016-10-03 18:02 - 2016-09-15 18:20 - 02095616 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-10-03 18:02 - 2016-09-15 18:20 - 01710080 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-10-03 18:02 - 2016-09-15 18:20 - 01275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-10-03 18:02 - 2016-09-15 18:20 - 00875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-10-03 18:02 - 2016-09-15 18:19 - 01424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2016-10-03 18:02 - 2016-09-15 18:18 - 01369088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2016-10-03 18:02 - 2016-09-15 18:18 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-10-03 18:02 - 2016-09-15 18:17 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-10-03 18:02 - 2016-09-15 18:17 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-10-03 18:02 - 2016-09-15 18:16 - 00886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-10-03 18:02 - 2016-09-15 18:16 - 00531456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2016-10-03 18:02 - 2016-08-06 05:34 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\smphost.dll
2016-10-03 18:02 - 2016-08-06 05:33 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smphost.dll
2016-10-03 18:02 - 2016-08-05 10:29 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2016-10-03 05:43 - 2016-10-08 13:14 - 00000000 ___DC C:\WINDOWS\Panther
2016-10-03 05:41 - 2016-10-08 13:16 - 00000000 ____D C:\Windows.old
2016-10-03 05:41 - 2016-10-03 05:41 - 17187840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 13867520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2016-10-03 05:41 - 2016-10-03 05:41 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-10-03 05:41 - 2016-10-03 05:41 - 07792640 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 06574592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 05384192 _____ (Microsoft) C:\WINDOWS\system32\dbgeng.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 05376000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 04557824 _____ (Microsoft) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 04148224 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 03435008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 03299328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 03116544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 02947072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 02913104 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 02852864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-10-03 05:41 - 2016-10-03 05:41 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-10-03 05:41 - 2016-10-03 05:41 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 02481768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 02423296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAJApi.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 02370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 02360832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 02315264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 02289664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 02256224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-10-03 05:41 - 2016-10-03 05:41 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 02183792 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 02166232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 02107392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 02083840 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 02049480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01966288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01891328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01853232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01847048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01557296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01555456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01453992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01362504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01349120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01343928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01312768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01176664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01066328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01029632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 01006080 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00959104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00939872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00857440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00811416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00790760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00782176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00781824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00773200 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00761344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00755656 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00681304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2016-10-03 05:41 - 2016-10-03 05:41 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00665768 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenValObj.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00650240 _____ (Microsoft) C:\WINDOWS\system32\DbgModel.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00640976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00601200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00595488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00529928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00523712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00461312 _____ (Microsoft) C:\WINDOWS\SysWOW64\DbgModel.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00450392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-10-03 05:41 - 2016-10-03 05:41 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00423776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00409944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-10-03 05:41 - 2016-10-03 05:41 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-10-03 05:41 - 2016-10-03 05:41 - 00408600 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00396168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00389000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00382272 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00379744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-10-03 05:41 - 2016-10-03 05:41 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NmaDirect.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00321792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00313560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00303968 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NmaDirect.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-10-03 05:41 - 2016-10-03 05:41 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-10-03 05:41 - 2016-10-03 05:41 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafpos.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpipcfg.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_G18030.DLL
2016-10-03 05:41 - 2016-10-03 05:41 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_G18030.DLL
2016-10-03 05:41 - 2016-10-03 05:41 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-10-03 05:41 - 2016-10-03 05:41 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00204288 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DscCoreConfProv.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00178528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00172528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-10-03 05:41 - 2016-10-03 05:41 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2016-10-03 05:41 - 2016-10-03 05:41 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\XamlTileRender.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-10-03 05:41 - 2016-10-03 05:41 - 00151224 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-10-03 05:41 - 2016-10-03 05:41 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00141824 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DscCoreConfProv.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00133472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-10-03 05:41 - 2016-10-03 05:41 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00121368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\EhStorTcgDrv.sys
2016-10-03 05:41 - 2016-10-03 05:41 - 00117240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00114192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00108384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-10-03 05:41 - 2016-10-03 05:41 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00079536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00073568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2016-10-03 05:41 - 2016-10-03 05:41 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AddressParser.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00062816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-10-03 05:41 - 2016-10-03 05:41 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00057400 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\POSyncServices.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataPlatformHelperUtil.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AddressParser.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactActivation.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactActivation.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00044472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-10-03 05:41 - 2016-10-03 05:41 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00041824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-10-03 05:41 - 2016-10-03 05:41 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTypeHelperUtil.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-10-03 05:41 - 2016-10-03 05:41 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataLanguageUtil.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00036168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\encapi.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\delegatorprovider.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiougc.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi_passthru.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\encapi.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\delegatorprovider.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi_passthru.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExtrasXmlParser.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_IS2022.DLL
2016-10-03 05:41 - 2016-10-03 05:41 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\c_GSM7.DLL
2016-10-03 05:41 - 2016-10-03 05:41 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_IS2022.DLL
2016-10-03 05:41 - 2016-10-03 05:41 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\c_GSM7.DLL
2016-10-03 05:41 - 2016-10-03 05:41 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2016-10-03 05:41 - 2016-10-03 05:41 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccessRes.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccessRes.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2016-10-03 05:41 - 2016-10-03 05:41 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2016-10-03 05:41 - 2016-10-03 05:41 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneutilRes.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneutilRes.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneServiceRes.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2016-10-03 05:38 - 2016-10-03 05:38 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-10-03 05:38 - 2016-10-03 04:43 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-10-03 05:37 - 2016-10-03 05:37 - 00199008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2016-10-03 05:37 - 2016-10-03 05:37 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-10-03 05:37 - 2016-10-03 05:37 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2016-10-03 05:37 - 2016-10-03 05:37 - 00000000 ____D C:\WINDOWS\system32\msmq
2016-10-03 05:37 - 2016-10-03 05:37 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2016-10-03 05:37 - 2016-10-03 05:37 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-10-03 05:37 - 2016-10-03 05:37 - 00000000 ____D C:\Program Files\MSBuild
2016-10-03 05:37 - 2016-10-03 05:37 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-10-03 05:37 - 2016-10-03 05:37 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-10-03 05:37 - 2016-10-03 05:37 - 00000000 ____D C:\inetpub
2016-10-03 05:37 - 2016-05-25 15:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-10-03 05:37 - 2016-05-25 15:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-10-03 05:37 - 2016-05-25 15:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-10-03 05:37 - 2016-05-25 12:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-10-03 05:37 - 2016-05-25 12:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-10-03 05:37 - 2016-05-25 12:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-10-03 05:04 - 2016-10-03 05:04 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-10-03 05:03 - 2016-10-03 05:03 - 00000000 ____D C:\ProgramData\USOShared
2016-10-03 05:02 - 2016-10-03 15:54 - 00000000 ____D C:\Users\Viral Nature\AppData\Local\ConnectedDevicesPlatform
2016-10-03 05:02 - 2016-10-03 05:02 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-10-03 05:02 - 2016-10-03 05:02 - 00000020 ___SH C:\Users\Viral Nature\ntuser.ini
2016-10-03 04:53 - 2016-10-03 04:53 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-10-03 04:53 - 2016-10-03 04:53 - 00000000 _SHDL C:\Users\Default\Startmenü
2016-10-03 04:53 - 2016-10-03 04:53 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-10-03 04:53 - 2016-10-03 04:53 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-10-03 04:53 - 2016-10-03 04:53 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-10-03 04:53 - 2016-10-03 04:53 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-10-03 04:53 - 2016-10-03 04:53 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-10-03 04:53 - 2016-10-03 04:53 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-10-03 04:53 - 2016-10-03 04:53 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-10-03 04:53 - 2016-10-03 04:53 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-10-03 04:53 - 2016-10-03 04:53 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-10-03 04:53 - 2016-10-03 04:53 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-10-03 04:53 - 2016-10-03 04:53 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-10-03 04:52 - 2016-10-16 20:40 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-10-03 04:52 - 2016-10-07 01:33 - 00003858 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-10-03 04:52 - 2016-10-03 04:52 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2016-10-03 04:52 - 2016-10-03 04:52 - 00007623 _____ C:\WINDOWS\diagerr.xml
2016-10-03 04:52 - 2016-10-03 04:52 - 00003660 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-10-03 04:52 - 2016-10-03 04:52 - 00003436 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore

LChan 16.10.2016 22:58
Teil 3

Code:
2016-10-03 04:52 - 2016-10-03 04:52 - 00003388 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1474987747
2016-10-03 04:52 - 2016-10-03 04:52 - 00003190 _____ C:\WINDOWS\System32\Tasks\Registration 1und1 Task
2016-10-03 04:52 - 2016-10-03 04:52 - 00003142 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-03 04:52 - 2016-10-03 04:52 - 00003114 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-03 04:52 - 2016-10-03 04:52 - 00003044 _____ C:\WINDOWS\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d
2016-10-03 04:52 - 2016-10-03 04:52 - 00002962 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-03 04:52 - 2016-10-03 04:52 - 00002952 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-10-03 04:52 - 2016-10-03 04:52 - 00002942 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-03 04:52 - 2016-10-03 04:52 - 00002852 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-03 04:52 - 2016-10-03 04:52 - 00002838 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task
2016-10-03 04:52 - 2016-10-03 04:52 - 00002810 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-03 04:52 - 2016-10-03 04:52 - 00002702 _____ C:\WINDOWS\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon
2016-10-03 04:52 - 2016-10-03 04:52 - 00002668 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachineDaily
2016-10-03 04:52 - 2016-10-03 04:52 - 00002576 _____ C:\WINDOWS\System32\Tasks\DeviceDetector
2016-10-03 04:52 - 2016-10-03 04:52 - 00002538 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachine
2016-10-03 04:52 - 2016-10-03 04:52 - 00002416 _____ C:\WINDOWS\System32\Tasks\{FED53E4C-48C0-43FB-A8BF-8FD4A317196F}
2016-10-03 04:52 - 2016-10-03 04:52 - 00002374 _____ C:\WINDOWS\System32\Tasks\CAM
2016-10-03 04:52 - 2016-10-03 04:52 - 00002236 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-10-03 04:52 - 2016-10-03 04:52 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2016-10-03 04:48 - 2016-10-03 04:48 - 00001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-10-03 04:48 - 2016-10-03 04:48 - 00000000 ____D C:\Users\Default\AppData\Roaming\Media Center Programs
2016-10-03 04:48 - 2016-10-03 04:48 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2016-10-03 04:48 - 2016-10-03 04:48 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Media Center Programs
2016-10-03 04:48 - 2016-10-03 04:48 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2016-10-03 04:46 - 2016-10-03 04:48 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-10-03 04:46 - 2016-10-03 04:46 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2016-10-03 04:46 - 2016-07-16 13:41 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-10-03 04:45 - 2016-10-16 20:57 - 00000000 ____D C:\Users\Viral Nature
2016-10-03 04:45 - 2016-10-16 20:46 - 02284606 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-10-03 04:45 - 2016-10-03 04:45 - 01604148 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2016-10-03 04:45 - 2016-10-03 04:45 - 00000000 _SHDL C:\Users\Viral Nature\Vorlagen
2016-10-03 04:45 - 2016-10-03 04:45 - 00000000 _SHDL C:\Users\Viral Nature\Startmenü
2016-10-03 04:45 - 2016-10-03 04:45 - 00000000 _SHDL C:\Users\Viral Nature\Netzwerkumgebung
2016-10-03 04:45 - 2016-10-03 04:45 - 00000000 _SHDL C:\Users\Viral Nature\Lokale Einstellungen
2016-10-03 04:45 - 2016-10-03 04:45 - 00000000 _SHDL C:\Users\Viral Nature\Eigene Dateien
2016-10-03 04:45 - 2016-10-03 04:45 - 00000000 _SHDL C:\Users\Viral Nature\Druckumgebung
2016-10-03 04:45 - 2016-10-03 04:45 - 00000000 _SHDL C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-10-03 04:45 - 2016-10-03 04:45 - 00000000 _SHDL C:\Users\Viral Nature\AppData\Local\Verlauf
2016-10-03 04:45 - 2016-10-03 04:45 - 00000000 _SHDL C:\Users\Viral Nature\AppData\Local\Anwendungsdaten
2016-10-03 04:45 - 2016-10-03 04:45 - 00000000 _SHDL C:\Users\Viral Nature\Anwendungsdaten
2016-10-03 04:44 - 2016-10-16 20:40 - 00000000 ____D C:\ProgramData\NVIDIA
2016-10-03 04:44 - 2016-10-03 04:46 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-10-03 04:44 - 2016-10-03 04:46 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-10-03 04:44 - 2016-10-03 04:46 - 00000000 ____D C:\Program Files\Intel
2016-10-03 04:44 - 2016-10-03 04:46 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-10-03 04:44 - 2016-10-03 04:44 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-10-03 04:44 - 2016-10-03 04:44 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-10-03 04:44 - 2016-10-03 04:44 - 00000000 ____D C:\Program Files\Realtek
2016-10-03 04:44 - 2016-09-17 00:54 - 07379415 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-10-03 04:44 - 2016-09-17 00:54 - 06384064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-10-03 04:44 - 2016-09-17 00:54 - 02475064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-10-03 04:44 - 2016-09-17 00:54 - 01762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-10-03 04:44 - 2016-09-17 00:54 - 01364024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-10-03 04:44 - 2016-09-17 00:54 - 00548408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-10-03 04:44 - 2016-09-17 00:54 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-10-03 04:44 - 2016-09-17 00:54 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-10-03 04:44 - 2016-09-17 00:54 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-10-03 04:44 - 2016-05-03 23:30 - 00081416 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-10-03 04:43 - 2016-10-16 23:20 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-10-03 04:43 - 2016-10-13 22:55 - 04802488 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-10-02 19:07 - 2016-10-02 19:07 - 00000000 ____D C:\Users\Viral Nature\AppData\Local\FreeReign
2016-10-02 19:07 - 2016-10-02 19:07 - 00000000 ____D C:\Users\Viral Nature\AppData\Local\CrashRpt
2016-10-01 00:50 - 2016-10-01 00:50 - 00001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-09-27 16:49 - 2016-09-27 16:49 - 00001088 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-09-26 18:23 - 2016-09-26 18:23 - 00969184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2016-09-26 18:23 - 2016-09-26 18:23 - 00513632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2016-09-26 18:23 - 2016-09-26 18:23 - 00001979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2016-09-26 18:22 - 2016-09-26 18:22 - 00513496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys.147490698725010
2016-09-26 18:22 - 2016-09-26 18:22 - 00391496 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-09-26 18:22 - 2016-09-26 18:22 - 00163416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-09-26 18:22 - 2016-09-26 18:22 - 00108816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-09-26 18:22 - 2016-09-26 18:22 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-09-26 18:22 - 2016-09-26 18:22 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-09-26 18:22 - 2016-09-26 18:22 - 00053208 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-09-26 18:22 - 2016-09-26 18:22 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-09-26 18:22 - 2016-09-26 18:21 - 00969560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys.147490698553107
2016-09-26 18:22 - 2016-09-26 18:21 - 00037144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-09-26 01:35 - 2016-09-17 00:36 - 00134712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2016-09-26 01:35 - 2016-09-09 20:25 - 00269600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-09-26 01:35 - 2016-09-09 20:25 - 00261920 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-09-26 01:35 - 2016-09-09 20:25 - 00110880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-09-26 01:35 - 2016-09-09 20:24 - 00125216 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-09-26 01:33 - 2016-09-17 02:45 - 40068544 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 35182648 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 34849336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 28245048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 10868288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 10753576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 10294720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 09098352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 08877480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 08691848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 03907504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 03449344 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 02912192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 02551352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 01922616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437290.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 01585088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437290.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 01019328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 00956864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 00943672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 00895032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 00802768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 00801560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 00688784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 00643928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 00642576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 00616648 _____ C:\WINDOWS\system32\nvmcumd.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 00578240 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 00439352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 00394704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 00390200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 00386104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 00348728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 00327408 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-09-26 01:33 - 2016-09-17 02:45 - 00040826 _____ C:\WINDOWS\system32\nvinfo.pb
2016-09-26 01:33 - 2016-09-17 02:45 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-09-26 01:33 - 2016-09-17 02:45 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2016-09-26 01:23 - 2016-09-26 01:23 - 00001521 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-09-26 01:23 - 2016-09-17 03:42 - 01842744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-09-26 01:23 - 2016-09-17 03:42 - 01756728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2016-09-26 01:23 - 2016-09-17 03:42 - 01450040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-09-26 01:23 - 2016-09-17 03:42 - 01318968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-09-26 01:23 - 2016-09-17 03:42 - 00121912 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-09-26 01:18 - 2016-09-17 03:42 - 00106040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-09-26 01:18 - 2016-09-17 03:42 - 00095800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-09-26 01:18 - 2016-09-17 03:42 - 00047672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2016-09-26 01:18 - 2016-09-17 00:40 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2016-09-25 23:09 - 2016-09-25 23:09 - 00000000 ____D C:\Users\Viral Nature\AppData\Local\SWTOR
2016-09-25 19:26 - 2016-09-26 01:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-09-25 16:53 - 2016-10-03 04:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA
2016-09-25 16:53 - 2016-09-25 16:53 - 00000000 ____D C:\Program Files (x86)\Electronic Arts
2016-09-22 19:46 - 2016-09-22 19:46 - 00000000 ____D C:\Users\Viral Nature\AppData\Local\HirezLauncherUI
2016-09-22 19:45 - 2016-10-16 20:40 - 00000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2016-09-22 19:45 - 2016-10-03 04:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
2016-09-22 19:45 - 2016-09-22 19:48 - 00000000 ____D C:\ProgramData\Hi-Rez Studios

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-10-16 23:08 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2016-10-16 22:49 - 2015-08-11 19:21 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\TS3Client
2016-10-16 22:48 - 2015-08-25 18:34 - 00000000 ____D C:\Users\Viral Nature\AppData\Local\Spotify
2016-10-16 22:31 - 2015-09-02 20:06 - 00000000 ____D C:\Users\Viral Nature\AppData\Local\Battle.net
2016-10-16 22:21 - 2015-08-25 18:33 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\Spotify
2016-10-16 20:57 - 2015-08-11 19:18 - 00000000 ____D C:\Program Files (x86)\Steam
2016-10-16 20:50 - 2015-09-02 20:06 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-10-16 20:46 - 2016-07-17 00:51 - 00892132 _____ C:\WINDOWS\system32\perfh007.dat
2016-10-16 20:46 - 2016-07-17 00:51 - 00212864 _____ C:\WINDOWS\system32\perfc007.dat
2016-10-16 20:41 - 2016-07-26 17:04 - 00000000 __SHD C:\Users\Viral Nature\IntelGraphicsProfiles
2016-10-16 09:21 - 2016-07-16 08:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2016-10-15 20:20 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-10-15 00:55 - 2016-01-27 00:03 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\.purple
2016-10-15 00:07 - 2016-07-26 00:53 - 00000000 ____D C:\Program Files (x86)\Overwatch
2016-10-14 13:33 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-10-13 22:56 - 2016-04-27 07:55 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-10-13 22:55 - 2015-08-23 22:29 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-10-13 22:55 - 2015-08-23 22:29 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-10-13 22:54 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-10-13 22:54 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-10-13 22:54 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-10-13 22:54 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-10-13 22:54 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-10-13 22:54 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-10-13 22:54 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-10-13 22:54 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2016-10-13 20:06 - 2016-07-26 19:24 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-10-13 20:01 - 2015-08-23 22:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-10-13 20:01 - 2012-10-11 01:16 - 143495576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-10-13 20:00 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-10-13 17:35 - 2016-01-18 00:22 - 00000000 ____D C:\Users\Viral Nature\AppData\Local\ElevatedDiagnostics
2016-10-13 17:26 - 2015-08-11 21:06 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-10-12 23:14 - 2016-07-16 08:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-10-12 23:13 - 2010-11-21 05:27 - 00504488 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-10-12 16:36 - 2015-08-11 21:06 - 00000000 ____D C:\Users\Viral Nature\AppData\Local\Adobe
2016-10-12 16:35 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-10-12 16:35 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-10-11 22:36 - 2015-11-30 19:17 - 00000000 ____D C:\Users\Viral Nature\AppData\Local\Ubisoft Game Launcher
2016-10-11 19:38 - 2015-10-11 20:58 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\Riot Games
2016-10-08 03:04 - 2015-08-14 02:09 - 00000000 ____D C:\Program Files\paint.net
2016-10-08 02:59 - 2015-12-06 00:44 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\GameRanger
2016-10-08 02:56 - 2015-10-06 23:10 - 00000000 ____D C:\Users\Viral Nature\AppData\Local\Black_Tree_Gaming
2016-10-08 02:55 - 2015-08-11 19:45 - 00000000 ____D C:\ProgramData\Origin
2016-10-08 02:55 - 2015-08-11 18:43 - 00000000 ____D C:\Users\Viral Nature\AppData\Local\CrashDumps
2016-10-08 02:52 - 2015-08-11 19:48 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\Origin
2016-10-08 02:48 - 2016-03-02 01:26 - 00000000 ____D C:\Users\Viral Nature\AppData\Local\HiSuite
2016-10-08 02:48 - 2016-03-02 01:26 - 00000000 ____D C:\Program Files (x86)\HiSuite
2016-10-08 02:46 - 2015-08-20 19:27 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2016-10-06 21:55 - 2015-10-11 01:17 - 00000000 ____D C:\Program Files (x86)\Origin
2016-10-06 17:07 - 2015-08-23 18:56 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-10-04 16:20 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\appcompat
2016-10-04 16:20 - 2015-08-18 21:03 - 00002264 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-04 01:15 - 2016-07-17 00:56 - 00000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2016-10-04 01:15 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-10-04 01:15 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-10-04 01:15 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-10-04 01:15 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\setup
2016-10-04 01:15 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-10-04 01:15 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-10-04 01:15 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Provisioning
2016-10-04 01:15 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-10-04 01:15 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-10-04 01:15 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-10-04 01:15 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-10-03 05:43 - 2016-07-16 13:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-10-03 05:41 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-10-03 05:41 - 2016-07-16 13:47 - 00000000 ___RD C:\Program Files\Windows Defender
2016-10-03 05:41 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-10-03 05:41 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-10-03 05:41 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-10-03 05:41 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-10-03 05:41 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-10-03 05:41 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-10-03 05:41 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-10-03 05:37 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-10-03 05:37 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2016-10-03 05:37 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-10-03 05:37 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2016-10-03 05:37 - 2016-07-16 13:44 - 00621568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2016-10-03 05:37 - 2016-07-16 13:44 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2016-10-03 05:37 - 2016-07-16 13:44 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2016-10-03 05:37 - 2016-07-16 13:44 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2016-10-03 05:37 - 2016-07-16 13:44 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2016-10-03 05:37 - 2016-07-16 13:44 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2016-10-03 05:37 - 2016-07-16 13:44 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2016-10-03 05:37 - 2016-07-16 13:44 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2016-10-03 05:37 - 2016-07-16 13:44 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2016-10-03 05:37 - 2016-07-16 13:44 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2016-10-03 05:37 - 2016-07-16 13:44 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2016-10-03 05:37 - 2016-07-16 13:44 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2016-10-03 05:37 - 2016-07-16 13:44 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2016-10-03 05:37 - 2016-07-16 13:44 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2016-10-03 05:37 - 2016-07-16 13:44 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2016-10-03 05:37 - 2016-07-16 13:44 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2016-10-03 05:37 - 2016-07-16 13:43 - 01414144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2016-10-03 05:37 - 2016-07-16 13:43 - 00785408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2016-10-03 05:37 - 2016-07-16 13:43 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2016-10-03 05:37 - 2016-07-16 13:43 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2016-10-03 05:37 - 2016-07-16 13:43 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2016-10-03 05:37 - 2016-07-16 13:43 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2016-10-03 05:37 - 2016-07-16 13:43 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2016-10-03 05:37 - 2016-07-16 13:43 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2016-10-03 05:37 - 2016-07-16 13:43 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2016-10-03 05:37 - 2016-07-16 13:43 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2016-10-03 05:37 - 2016-07-16 13:43 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2016-10-03 05:37 - 2016-07-16 13:43 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2016-10-03 05:37 - 2016-07-16 13:43 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2016-10-03 05:37 - 2016-07-16 13:43 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2016-10-03 05:37 - 2016-07-16 13:43 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2016-10-03 05:37 - 2016-07-16 13:43 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2016-10-03 05:37 - 2016-07-16 13:43 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2016-10-03 05:37 - 2016-07-16 13:43 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2016-10-03 05:37 - 2016-07-16 13:43 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2016-10-03 05:37 - 2016-07-16 13:43 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2016-10-03 05:37 - 2016-07-16 13:43 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2016-10-03 05:19 - 2016-07-25 23:32 - 00000000 ____D C:\Users\Viral Nature\AppData\Local\Packages
2016-10-03 05:08 - 2016-07-25 23:35 - 00000000 ___RD C:\Users\Viral Nature\OneDrive
2016-10-03 05:04 - 2016-09-06 20:29 - 00002452 _____ C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-10-03 05:03 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\USOPrivate
2016-10-03 04:53 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows NT
2016-10-03 04:52 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-10-03 04:52 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Registration
2016-10-03 04:52 - 2015-08-18 21:03 - 00001148 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-10-03 04:52 - 2015-08-18 21:03 - 00001144 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-10-03 04:52 - 2015-08-11 18:38 - 00000828 _____ C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2016-10-03 04:50 - 2016-07-25 23:30 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-10-03 04:50 - 2016-07-16 13:47 - 00000000 __RSD C:\WINDOWS\Media
2016-10-03 04:50 - 2016-07-16 13:47 - 00000000 __RHD C:\Users\Public\Libraries
2016-10-03 04:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2016-10-03 04:48 - 2016-08-02 03:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GMX MailCheck
2016-10-03 04:48 - 2016-07-26 01:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch
2016-10-03 04:48 - 2016-07-25 16:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2016-10-03 04:48 - 2016-06-22 01:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2016-10-03 04:48 - 2016-06-13 21:05 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2
2016-10-03 04:48 - 2016-05-18 23:36 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Knudsen Apps
2016-10-03 04:48 - 2016-02-29 19:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-10-03 04:48 - 2016-02-21 15:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sylenth1
2016-10-03 04:48 - 2016-01-01 00:16 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
2016-10-03 04:48 - 2016-01-01 00:15 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
2016-10-03 04:48 - 2016-01-01 00:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line
2016-10-03 04:48 - 2015-12-29 19:24 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-10-03 04:48 - 2015-12-09 22:49 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tweak-SSD v2
2016-10-03 04:48 - 2015-12-09 21:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xinorbis6
2016-10-03 04:48 - 2015-11-09 23:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo
2016-10-03 04:48 - 2015-10-30 08:28 - 00000000 ____D C:\Users\Default.migrated
2016-10-03 04:48 - 2015-10-15 21:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows - LIVE
2016-10-03 04:48 - 2015-10-11 01:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2016-10-03 04:48 - 2015-09-16 18:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\My MP4Box GUI
2016-10-03 04:48 - 2015-09-16 18:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviSynth
2016-10-03 04:48 - 2015-09-16 18:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\x264vfw
2016-10-03 04:48 - 2015-09-14 18:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GenArts Sapphire OFX
2016-10-03 04:48 - 2015-09-02 20:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2016-10-03 04:48 - 2015-08-24 03:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MagicYUV
2016-10-03 04:48 - 2015-08-24 02:49 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2016-10-03 04:48 - 2015-08-24 02:49 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2016-10-03 04:48 - 2015-08-19 19:45 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2016-10-03 04:48 - 2015-08-18 21:03 - 00000000 ____D C:\WINDOWS\SysWOW64\vbox
2016-10-03 04:48 - 2015-08-18 21:03 - 00000000 ____D C:\WINDOWS\system32\vbox
2016-10-03 04:48 - 2015-08-18 21:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-10-03 04:48 - 2015-08-17 20:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2016-10-03 04:48 - 2015-08-17 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-10-03 04:48 - 2015-08-17 20:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2016-10-03 04:48 - 2015-08-15 23:38 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-10-03 04:48 - 2015-08-15 23:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle ES2
2016-10-03 04:48 - 2015-08-15 23:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
2016-10-03 04:48 - 2015-08-15 23:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5.5
2016-10-03 04:48 - 2015-08-15 21:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Red Giant
2016-10-03 04:48 - 2015-08-15 21:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Magic Bullet Looks
2016-10-03 04:48 - 2015-08-14 20:46 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-10-03 04:48 - 2015-08-14 20:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-10-03 04:48 - 2015-08-11 19:20 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2016-10-03 04:48 - 2015-08-11 19:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-10-03 04:48 - 2015-08-11 19:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft LifeCam
2016-10-03 04:48 - 2015-08-11 18:43 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink MediaEspresso
2016-10-03 04:48 - 2015-08-11 18:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast USB
2016-10-03 04:48 - 2015-08-11 18:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast LAN
2016-10-03 04:48 - 2015-08-11 18:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2016-10-03 04:48 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-10-03 04:46 - 2016-07-17 00:50 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2016-10-03 04:46 - 2016-07-16 13:47 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-10-03 04:46 - 2016-07-16 13:47 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-10-03 04:46 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2016-10-03 04:46 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\spool
2016-10-03 04:46 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-10-03 04:46 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\IME
2016-10-03 04:46 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\schemas
2016-10-03 04:46 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-10-03 04:46 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-10-03 04:46 - 2016-06-25 15:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CAM
2016-10-03 04:46 - 2016-06-08 11:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2016-10-03 04:46 - 2016-03-26 00:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.0
2016-10-03 04:46 - 2016-03-12 03:17 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2016-10-03 04:46 - 2016-02-21 16:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\reFX
2016-10-03 04:46 - 2016-01-29 23:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCWest
2016-10-03 04:46 - 2016-01-12 16:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iZotope
2016-10-03 04:46 - 2015-12-26 05:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-10-03 04:46 - 2015-10-15 21:40 - 00000000 ____D C:\WINDOWS\SysWOW64\xlive
2016-10-03 04:46 - 2015-08-20 19:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2016-10-03 04:46 - 2015-08-11 18:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-10-03 04:46 - 2015-08-11 18:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
2016-10-03 04:46 - 2015-08-11 18:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility
2016-10-03 04:46 - 2015-08-11 18:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Asmedia Technology
2016-10-03 04:46 - 2011-04-12 09:54 - 00000000 ___RD C:\Users\Public\Recorded TV
2016-10-03 04:46 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Microsoft Games
2016-10-03 04:44 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-10-03 04:44 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-10-03 04:44 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Help
2016-10-03 04:44 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-10-02 17:55 - 2015-08-11 21:31 - 00000000 ____D C:\ProgramData\Package Cache
2016-10-01 00:44 - 2015-08-11 18:38 - 00000830 _____ C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2016-09-26 18:22 - 2015-08-18 21:02 - 00000000 ____D C:\ProgramData\AVAST Software
2016-09-26 18:21 - 2015-08-18 21:02 - 00000000 ____D C:\Program Files\AVAST Software
2016-09-26 01:38 - 2015-08-11 18:55 - 00000000 ____D C:\Users\Viral Nature\AppData\Local\NVIDIA Corporation
2016-09-26 01:37 - 2015-11-15 04:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-09-26 01:35 - 2016-03-26 00:34 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-09-26 01:24 - 2015-08-11 18:55 - 00000000 ____D C:\Users\Viral Nature\AppData\Local\NVIDIA
2016-09-25 16:53 - 2015-10-23 00:57 - 00000000 _____ C:\end
2016-09-24 22:20 - 2016-07-29 02:30 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\TeamViewer
2016-09-24 22:12 - 2016-06-15 15:22 - 00000000 ____D C:\Program Files (x86)\NCSOFT
2016-09-24 01:01 - 2015-08-24 02:49 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2016-09-23 19:38 - 2015-08-15 23:37 - 00000000 ____D C:\Users\Viral Nature\AppData\Roaming\Skype
2016-09-23 19:10 - 2015-08-15 23:37 - 00000000 ____D C:\ProgramData\Skype
2016-09-22 19:45 - 2015-08-11 18:34 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-09-16 23:08 - 2015-08-11 19:20 - 00000000 ____D C:\Users\Viral Nature\AppData\Local\TeamSpeak 3 Client

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-12-06 00:31 - 2016-05-20 00:47 - 0000132 _____ () C:\Users\Viral Nature\AppData\Roaming\Adobe PNG Format CS5 Prefs
2015-08-15 21:57 - 2015-08-15 21:57 - 0000054 _____ () C:\Users\Viral Nature\AppData\Roaming\updater.cfg
2016-06-20 00:02 - 2016-06-20 00:02 - 0002814 _____ () C:\Users\Viral Nature\AppData\Local\recently-used.xbel
2015-08-11 18:41 - 2015-08-11 18:41 - 0000003 _____ () C:\Users\Viral Nature\AppData\Local\user_data.ini
2016-08-08 05:04 - 2016-08-08 05:04 - 0000016 _____ () C:\ProgramData\mntemp

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-10-13 19:58

==================== Ende von FRST.txt ============================
Und hier die Addition.txt

Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 16-10-2016
durchgeführt von Viral Nature (16-10-2016 23:35:59)
Gestartet von D:\Users\Viral Nature\Downloads
Windows 10 Pro Version 1607 (X64) (2016-10-03 02:53:10)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3774873185-1156131496-3032177255-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3774873185-1156131496-3032177255-503 - Limited - Disabled)
Gast (S-1-5-21-3774873185-1156131496-3032177255-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3774873185-1156131496-3032177255-1002 - Limited - Enabled)
Viral Nature (S-1-5-21-3774873185-1156131496-3032177255-1000 - Administrator - Enabled) => C:\Users\Viral Nature

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Acrobat.com (HKLM-x32\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1.377 - Adobe Systems Incorporated)
Acrobat.com (x32 Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.0.0 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Content Viewer (HKLM-x32\...\com.adobe.dmp.contentviewer) (Version: 1.4.0 - Adobe Systems Incorporated)
Adobe Creative Suite 5.5 Master Collection (HKLM-x32\...\{D57FC112-312E-4D70-860F-2DB8FB6858F0}) (Version: 5.5 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.185 - Adobe Systems Incorporated)
Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A90000000001}) (Version: 9.0.0 - Adobe Systems Incorporated)
Adobe Story (HKLM-x32\...\com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.0.571 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1) (Version: 2.0 Build 230 - Adobe Systems Incorporated.)
Ansel (Version: 372.90 - NVIDIA Corporation) Hidden
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Aragami (HKLM\...\Steam App 280160) (Version:  - Lince Works)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.1.000 - Asmedia Technology)
ASRock App Charger v1.0.5 (HKLM\...\ASRock App Charger_is1) (Version:  - ASRock Inc.)
ASRock eXtreme Tuner v0.1.251 (HKLM-x32\...\ASRock eXtreme Tuner_is1) (Version:  - )
ASRock InstantBoot v1.29 (HKLM-x32\...\ASRock InstantBoot_is1) (Version:  - )
ASRock SmartConnect v1.0.6 (HKLM\...\ASRock SmartConnect_is1) (Version:  - ASRock Inc.)
ASRock XFast RAM v2.0.9 (HKLM\...\ASRock XFast RAM_is1) (Version:  - ASRock Inc.)
Audacity 2.1.1 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
AviSynth 2.6 (HKLM-x32\...\AviSynth) (Version: 2.6.0.6 - GPL Public release.)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
BCC 8 OFX 64Bit (HKLM\...\{24D38864-527F-4688-B831-A1A4CC60CD54}) (Version: 8.0.1 - Boris FX, Inc.)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
CAM (HKLM-x32\...\{B6CB1018-1191-4170-A33F-786E17AF1913}) (Version: 3.1.20 - NZXT)
CCleaner (HKLM\...\CCleaner) (Version: 5.15 - Piriform)
chip 1-click download service (HKLM-x32\...\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}) (Version: 3.6.9.0 - Chip Digital GmbH)
CPUID CPU-Z 1.76 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
CyberLink MediaEspresso (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.1611_37043 - CyberLink Corp.)
Dragon Age: Origins - Ultimate Edition (HKLM\...\Steam App 47810) (Version:  - BioWare)
Dragon Age: Origins (HKLM-x32\...\{AEC81925-9C76-4707-84A9-40696C613ED3}) (Version: 1.05.13263.0 - Electronic Arts)
Epic Games Launcher Prerequisites (x64) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Fable Anniversary (HKLM-x32\...\Steam App 288470) (Version:  - Lionhead Studios)
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version:  - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version:  - Image-Line)
Free YouTube Download (HKLM-x32\...\Free YouTube Download_is1) (Version: 4.1.0.1224 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.61.805 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.61.805 - DVDVideoSoft Ltd.)
GenArts Sapphire Plug-ins 6.10 for OFX (HKLM\...\GenArts Sapphire Plug-ins for OFX_is1) (Version:  - )
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
GMX MailCheck für Windows (HKLM-x32\...\1&1 Mail & Media GmbH Toolbar IE8) (Version: 2.6.9.0 - 1&1 Mail & Media GmbH)
GMX Softwareaktualisierung (HKLM-x32\...\1&1 Mail & Media GmbH 1und1Softwareaktualisierung) (Version: 4.0.3.0 - 1&1 Mail & Media GmbH)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.143 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Gyazo 3.2.2 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version:  - Nota Inc.)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version:  - Image-Line)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.3.1427 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version:  - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4358 - Intel Corporation)
Intel(R) Smart Connect Technology 2.0 x64 (HKLM\...\{54F8B6C7-9B25-4E85-A1E0-26CFB80DE787}) (Version: 2.0.1083.0 - Intel)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.220 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
iZotope iDrum (HKLM-x32\...\iZotope iDrum_is1) (Version: 1.75 - iZotope, Inc.)
Kingdoms of Amalur: Reckoning™ (HKLM\...\Steam App 102500) (Version:  - Big Huge Games)
Launcher Prerequisites (x64) (x32 Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
League of Legends (x32 Version: 4.1.2 - Riot Games) Hidden
Left 4 Dead 2 (HKLM\...\Steam App 550) (Version:  - Valve)
Lexicon Alpha Driver (HKLM-x32\...\Lexicon Alpha Driver) (Version: 2.7 - Lexicon)
Lexicon Alpha Driver (Version: 2.7 - Lexicon) Hidden
Magic Bullet Suite 64-bit (HKLM-x32\...\InstallShield_{93488C33-D8D6-472A-83BB-F71603355CF0}) (Version: 11.1.0 - Red Giant Software)
Magic Bullet Suite 64-bit (Version: 11.1.0 - Red Giant Software) Hidden
MagicYUV Lossless Video Codec version 1.1 (HKLM-x32\...\{90410593-E0EB-4F9B-B984-65BEA8F07B91}_is1) (Version: 1.1 - INNOMAGIC Bt.)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.334.1 - McAfee, Inc.)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{F97E3841-CA9D-4964-9D64-26066241D26F}) (Version: 3.3.24.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{5CE7E3F5-9803-4F32-AA89-2D8848A80109}) (Version: 3.60.253.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{85467CBC-7A39-33C9-8940-D72D9269B84F}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Moobot Assistant (HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\40790fab0e175d6b) (Version: 1.0.0.1 - Knudsen Apps)
Mozilla Firefox 49.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 49.0.1 (x86 de)) (Version: 49.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 49.0.1.6109 - Mozilla)
MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD)
My MP4Box GUI 0.6.0.6 (HKLM\...\{3FBE3061-F2BC-4D3A-B4A9-8FB15C503F87}_is1) (Version: 0.6.0.6 - Matt Bodin)
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version:  - NCSOFT)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 372.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 372.90 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.0.6.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.0.6.48 - NVIDIA Corporation)
NVIDIA Grafiktreiber 372.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 372.90 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.15 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.0.6.48 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.0.0.0 - NVIDIA Corporation) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.1.2 (HKLM-x32\...\{F5CAB1AF-7B1A-4CEC-B829-A3F699473AE1}) (Version: 4.12.9782 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 10.1.1.35466 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{19ca49bf-6005-419d-97b5-f7e717c374ea}) (Version: latest - ppy Pty Ltd)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.12 - )
PxMergeModule (x32 Version: 1.00.0000 - Your Company Name) Hidden
qBittorrent 3.3.5 (HKLM-x32\...\qBittorrent) (Version: 3.3.5 - The qBittorrent project)
QuickTime 7 (HKLM-x32\...\{627FFC10-CE0A-497F-BA2B-208CAC638010}) (Version: 7.77.80.95 - Apple Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6482 - Realtek Semiconductor Corp.)
reFX Nexus 1.0.0 (HKLM-x32\...\{84D04D4F-2201-4AED-BE9A-FFA62069CA19}_is1) (Version: 1.0.0 - reFX)
reFX Nexus VSTi RTAS v2.2.0 (HKLM-x32\...\reFX Nexus_is1) (Version:  - )
Return to Castle Wolfenstein (HKLM\...\Steam App 9010) (Version:  - Gray Matter Studios)
RivaTuner Statistics Server 6.3.0 (HKLM-x32\...\RTSS) (Version: 6.3.0 - Unwinder)
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
SHIELD Streaming (Version: 7.1.0310 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.0.6.48 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.3.0.9150 - Microsoft Corporation)
Skype™ 7.28 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.28.101 - Skype Technologies S.A.)
SmartView for IE (HKLM-x32\...\{C448EA30-BB7F-4D42-83BC-385EBA140AF2}) (Version: 1.0.4.1 - DeviceVM, Inc.) <==== ACHTUNG
SmartView Software Updater (HKLM-x32\...\{5B0CE14A-B9B6-4E25-A1BE-3EEC1998AC2C}) (Version: 1.0.4.1 - DeviceVM, Inc.) <==== ACHTUNG
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Splinter Cell Blacklist (HKLM-x32\...\Uplay Install 91) (Version:  - Ubisoft)
Splinter Cell Conviction (HKLM-x32\...\Uplay Install 2) (Version:  - Ubisoft)
Spotify (HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\Spotify) (Version: 1.0.39.157.g674ae377 - Spotify AB)
Star Wars: Knights of the Old Republic (HKLM-x32\...\Steam App 32370) (Version:  - BioWare)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
State of Decay (HKLM\...\Steam App 241540) (Version:  - Undead Labs)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Sylenth1 v2.21 (HKLM-x32\...\Sylenth1_is1) (Version:  - )
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamSpeak 3 Client (HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\TeamSpeak 3 Client) (Version: 3.0.17 - TeamSpeak Systems GmbH)
The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version:  - Ubisoft)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The T-Pain Effect Bundle (HKLM-x32\...\The T-Pain Effect Bundle_is1) (Version: 1.02 - iZotope, Inc.)
THX TruStudio (HKLM-x32\...\{AFB907F5-C0E6-4753-8284-DE955EF86AC2}) (Version: 1.00.01 - Creative Technology Limited)
Torchlight II (HKLM\...\Steam App 200710) (Version:  - Runic Games)
TreeSize Free V3.4.5 (HKLM-x32\...\TreeSize Free_is1) (Version: 3.4.5 - JAM Software)
Tweak-SSD v2 (HKLM\...\Tweak-SSD v2) (Version: 2.0.2 - Totalidea Software)
Uplay (HKLM-x32\...\Uplay) (Version: 18.1 - Ubisoft)
Vegas Pro 13.0 (64-bit) (HKLM\...\{CE92F061-BFBC-11E3-8FF3-F04DA23A5C58}) (Version: 13.0.290 - Sony)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
Windows 10-Upgrade-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17343 - Microsoft Corporation)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
x264vfw - H.264/MPEG-4 AVC codec (remove only) (HKLM-x32\...\x264vfw) (Version:  - )
XFast LAN v6.61 (HKLM\...\XFast LAN) (Version: 6.61 - cFos Software GmbH, Bonn)
XFastUSB (HKLM-x32\...\XFastUSB) (Version: 3.02.30 - ASRock Inc.)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3774873185-1156131496-3032177255-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Viral Nature\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3774873185-1156131496-3032177255-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0061309E-AA07-4CBF-9EAA-521E12F10EEA} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-09-17] (NVIDIA Corporation)
Task: {07C6BF72-13EB-4B39-8D99-C50C8B2A3F9B} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {0A3DEF1E-506B-4913-8E46-1B3A5D7D019C} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {0BCF9ECC-EC72-4E24-9A8A-5206E00B5E92} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {0D063E21-1560-47C1-BE68-92F8ACBAEAF3} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {0F6F00B9-AED2-438D-B2E4-D772A9F09901} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Keine Datei <==== ACHTUNG
Task: {0FC16195-C29E-4BB8-8197-54C24C4B0788} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {102892C5-C46C-49EF-A829-54AC89A2A158} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {111093E5-15B0-4780-B3AA-E6BCC374C92A} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Keine Datei <==== ACHTUNG
Task: {127BB9D6-CBB7-4FE4-8FDB-5982B4F1D230} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {1351F6B9-FE1A-4CF2-AD22-4FC830B495BD} - \Microsoft\Windows\Media Center\StartRecording -> Keine Datei <==== ACHTUNG
Task: {1F1EC537-36AC-4F9A-A131-FAB9F1BD5A2C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-12] (Adobe Systems Incorporated)
Task: {203A31C8-BA14-4590-B347-07E79E633697} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-09-17] (NVIDIA Corporation)
Task: {2164ED72-A3BB-4C63-A43B-F31635172779} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {29F1AFB5-E1E0-4481-8838-4128E79EE3A1} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {2E6455D3-254B-4016-8ED3-7D5CE41008D9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-09-17] (NVIDIA Corporation)
Task: {30D14A06-884D-409C-A966-97F8AFE5CCFD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {3B3063D8-CF31-44A5-A045-1361935D7B31} - \CreateChoiceProcessTask -> Keine Datei <==== ACHTUNG
Task: {3E0E6A7E-8459-4D80-AA91-BB8049F6A308} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {42CAE123-E21E-43E8-8E76-2C276F024A7C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {4B85BB9F-B868-4247-A93A-49AFFE6F9384} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {4CF59493-67D4-4287-A473-596D1B6DBB0D} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-09-17] (NVIDIA Corporation)
Task: {571CB136-962F-4092-BDB5-15B5A098D5F3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {58B42335-93C0-4B77-96A0-55860E145676} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {5961CE91-1C26-4090-844C-E158E95DBF6D} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {5AC6A2EF-F91B-4482-AC60-B58E53990F21} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Keine Datei <==== ACHTUNG
Task: {63527E25-B435-4EDA-B594-7034F48A5ABA} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {64255A96-7186-4433-A921-F4E268F27D6A} - System32\Tasks\{FED53E4C-48C0-43FB-A8BF-8FD4A317196F} => pcalua.exe -a "D:\SteamLibrary\steamapps\common\Left 4 Dead 2\bin\addoninstaller.exe" -d "D:\SteamLibrary\steamapps\common\Left 4 Dead 2" -c /register
Task: {64CEDF89-266D-4350-B734-B729764E7968} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> Keine Datei <==== ACHTUNG
Task: {662A674F-CDE2-4CBC-BDC9-5711FEEB617F} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {66BC33BE-E722-419D-989D-761BC4BB8AFC} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {69C4F2FC-A85B-4742-B847-D9CA49342BDF} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {6AC59F04-DDDD-4584-AFBE-8599B1174F90} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {6DD20D10-6626-4967-9F2B-56CE268B9205} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {7B127387-38CE-4419-82EB-0DF3B6A90EF8} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {7B2BB1F6-A546-470D-B19A-2ACE59903651} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {7E85CEC3-4C2C-466B-9ECE-EA698ECD3B84} - System32\Tasks\SafeZone scheduled Autoupdate 1474987747 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {89D233D5-6AB3-4DED-886D-2066054A6AF1} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {8CB5FFE7-57A1-43CA-A8F0-E7804D9A9B99} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {905184AC-2C79-4BFF-9C4D-183D5F911702} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {9279C3B8-CF5F-48CB-A12C-55E2823491B1} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-09-17] (NVIDIA Corporation)
Task: {99C58B59-0FB2-422A-B27C-BD79E9FDCF68} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {9B3126C8-2862-496E-BB3B-933C3D75AA41} - \AdobeAAMUpdater-1.0-ViralNature-PC-Viral Nature -> Keine Datei <==== ACHTUNG
Task: {A012626A-C59A-40AC-B046-7616D90827F0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-02-12] (Piriform Ltd)
Task: {A28F192B-1BCD-4A53-B833-E045B166A7B3} - \WPD\SqmUpload_S-1-5-21-3774873185-1156131496-3032177255-1000 -> Keine Datei <==== ACHTUNG
Task: {AF2036C8-8ECF-4FD1-9BB5-6296A5022D5E} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {B4CE786C-C7CA-44C1-8403-611DB839B45B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-09-17] (NVIDIA Corporation)
Task: {B96E00AC-5E7E-40ED-9675-22A9ADB55894} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {BACAC487-698F-4BD9-B586-CA27ED63D177} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2016-06-02] ()
Task: {BB91705F-DE75-4F14-BB48-B2ED6F7254C8} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {BC4B876A-053D-4476-BCBD-E23CFBACF474} - System32\Tasks\Registration 1und1 Task => C:\Program Files (x86)\1und1Softwareaktualisierung\cdsupdclient.exe [2016-03-25] (1&1 Mail & Media GmbH)
Task: {C1154349-B675-4628-8127-018F34C5D038} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Viral Nature\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-09-06] (Microsoft Corporation)
Task: {C7855424-D3FB-4E1B-B2C9-20E8B18B48B9} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {C8346CB5-1A18-4E94-8649-8BCFEDDCBEEE} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {CBE62A5F-61E6-4D06-9123-6ED8DBB69C1E} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2011-04-11] (CyberLink)
Task: {DA3B37F1-8FD3-476B-9555-7A1DA7C8B1F4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {DD158BAA-8529-4F5E-B4C7-A358A8A8706D} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {E812AE21-2253-44E7-8C51-FE2DD671639B} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-09-26] (AVAST Software)
Task: {F0685ADA-4FEF-4B45-8529-43ECD3554781} - System32\Tasks\CAM => C:\Program Files (x86)\NZXT\CAM\CAM_Client_V3.exe [2016-06-04] ()
Task: {F148C666-1FB7-4385-917B-1ECDEE9E2365} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {F3FC891B-AD14-483C-B380-848F03B314F5} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2016-06-02] ()
Task: {F9D676EF-BE01-40C8-B213-7350D7647311} - \Microsoft\Windows\Setup\gwx\rundetector -> Keine Datei <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-10-03 18:03 - 2016-09-15 19:25 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-11 18:38 - 2012-02-21 12:29 - 00128280 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
2016-09-26 01:18 - 2016-09-17 03:42 - 04490808 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-09-26 01:18 - 2016-09-17 03:42 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-09-26 01:23 - 2016-09-17 03:42 - 00419896 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2015-08-11 21:54 - 2016-09-05 19:41 - 00076152 _____ () C:\WINDOWS\system32\PnkBstrA.exe
2016-10-03 18:03 - 2016-09-15 19:25 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-10-03 05:04 - 2016-10-03 05:04 - 01864384 _____ () C:\Users\Viral Nature\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\ClientTelemetry.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 00130048 _____ () C:\WINDOWS\SYSTEM32\CHARTV.dll
2016-10-03 05:41 - 2016-10-03 05:41 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-10-13 17:40 - 2016-10-05 11:35 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-10-03 05:35 - 2016-10-03 05:35 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-10-03 05:35 - 2016-10-03 05:35 - 00178176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-10-03 05:35 - 2016-10-03 05:35 - 35250688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-10-13 17:40 - 2016-10-05 11:13 - 01401344 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-10-13 17:40 - 2016-10-05 11:21 - 09760256 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-10-13 17:40 - 2016-10-05 11:13 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-10-13 17:40 - 2016-10-05 11:13 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-10-13 17:40 - 2016-10-05 11:13 - 02424832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-10-13 17:40 - 2016-10-05 11:14 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-09-03 16:15 - 2016-09-03 16:15 - 03763712 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1608.2213.0_x64__8wekyb3d8bbwe\Calculator.exe
2016-09-26 18:22 - 2016-09-26 18:22 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-10-16 20:41 - 2016-10-16 20:41 - 03121496 _____ () C:\Program Files\AVAST Software\Avast\defs\16101600\algo.dll
2016-09-26 18:22 - 2016-09-26 18:22 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2015-08-17 20:01 - 2015-12-24 18:34 - 00110952 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
2015-08-17 20:01 - 2015-12-24 18:34 - 00253800 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\collector.dll
2015-08-17 20:01 - 2015-12-24 18:34 - 00295272 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\stat.dll
2015-08-17 20:01 - 2015-12-24 18:34 - 00104296 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
2015-08-17 20:01 - 2015-12-24 18:34 - 00044392 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
2015-08-17 20:01 - 2015-12-24 18:34 - 00020328 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
2016-10-06 21:55 - 2016-10-06 21:55 - 02493440 _____ () C:\Program Files (x86)\Origin\libGLESv2.dll
2016-09-26 18:22 - 2016-09-26 18:22 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-08-11 18:37 - 2012-02-21 12:09 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2016-10-03 18:03 - 2016-09-15 19:25 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)

HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\Software\Classes\regfile: regedit.exe "%1" <===== ACHTUNG

==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2016-07-25 16:49 - 00000867 ____A C:\WINDOWS\system32\Drivers\etc\hosts


0.0.0.1        mssplus.mcafee.com

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Viral Nature\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1 - 192.168.0.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "XFast LAN"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Adobe Acrobat Speed Launcher"
HKLM\...\StartupApproved\Run32: => "Adobe Reader Speed Launcher"
HKLM\...\StartupApproved\Run32: => "AdobeCS5.5ServiceManager"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "CAM"
HKLM\...\StartupApproved\Run32: => "UpdReg"
HKLM\...\StartupApproved\Run32: => "MailCheck IE Broker"
HKLM\...\StartupApproved\Run32: => "LifeCam"
HKLM\...\StartupApproved\Run32: => "SmartViewAgent"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKLM\...\StartupApproved\Run32: => "THX TruStudio NB Settings"
HKLM\...\StartupApproved\Run32: => "XFastUSB"
HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\StartupApproved\Run: => "Gyazo"
HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\...\StartupApproved\Run: => "Web Companion"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [UDP Query User{5DF73343-03EB-4C25-8F96-901E67CDFA83}D:\steamlibrary\steamapps\common\aftermath\aftermath.exe] => (Allow) D:\steamlibrary\steamapps\common\aftermath\aftermath.exe
FirewallRules: [TCP Query User{B25487D4-285D-4836-B003-0DE26B30B15A}D:\steamlibrary\steamapps\common\aftermath\aftermath.exe] => (Allow) D:\steamlibrary\steamapps\common\aftermath\aftermath.exe
FirewallRules: [UDP Query User{2154D7C1-C2A7-40CD-A655-BE7B9E710724}D:\steamlibrary\steamapps\common\aftermath\amlauncher.exe.new.exe] => (Allow) D:\steamlibrary\steamapps\common\aftermath\amlauncher.exe.new.exe
FirewallRules: [TCP Query User{E674B02F-194E-47A5-929E-9CB56CF4D581}D:\steamlibrary\steamapps\common\aftermath\amlauncher.exe.new.exe] => (Allow) D:\steamlibrary\steamapps\common\aftermath\amlauncher.exe.new.exe
FirewallRules: [{0E143C92-AB52-482A-A9F6-6E963DECEA19}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{101F9546-C004-4F56-867B-4DA329A0D2F4}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{F82702E1-544A-468D-B434-7243646C5979}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{DF19C908-B150-4018-82C1-DD2FFD2969CD}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [UDP Query User{8C395D2D-6928-40C6-8008-93B2FB3A4EC1}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [TCP Query User{919A237B-013B-4D6F-8F40-EE1EF3D7C328}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [UDP Query User{44174CB8-6EAC-47F4-8317-C79511DD0D48}C:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe
FirewallRules: [TCP Query User{F1DAC43E-9109-4BB7-A66A-FA6170E3E154}C:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe
FirewallRules: [{938C01AA-9E2D-4C6D-94AD-623BF87EA146}] => (Allow) C:\Rayman\Rayman Origins\Rayman Origins.exe
FirewallRules: [{EE90C242-D326-43AD-9DFF-CA629DE2F8F0}] => (Allow) C:\Rayman\Rayman Origins\Rayman Origins.exe
FirewallRules: [{12857211-C4B4-4CA9-89FD-13E7F976B735}] => (Allow) C:\Rayman\Rayman Origins\gu.exe
FirewallRules: [{5484C104-34DD-41E4-8B17-7775CF42271A}] => (Allow) C:\Rayman\Rayman Origins\gu.exe
FirewallRules: [UDP Query User{E8168295-79A0-40A0-8F2E-B1B7A59CE0DE}D:\hearthstone\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{3CBDBFCF-13D0-4A9D-A0B9-6C2778E0FBF8}D:\hearthstone\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone\hearthstone.exe
FirewallRules: [{A6F77823-D66B-4CE5-88F5-1FE476774A8E}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSixGame.exe
FirewallRules: [{F3AC802A-A92E-4A40-B6B5-F209574587B1}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSixGame.exe
FirewallRules: [{0A69433B-21A6-4330-8EB7-271D4771B4B7}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{A62728F3-FC16-489E-8276-2AC917FB6FBD}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [UDP Query User{5972E037-624C-4C1A-9BEC-2739097E963C}C:\origin\spiele\battlefield 4\bf4.exe] => (Allow) C:\origin\spiele\battlefield 4\bf4.exe
FirewallRules: [TCP Query User{9A9D6F65-67A0-4CA6-8BF6-9B625146AA40}C:\origin\spiele\battlefield 4\bf4.exe] => (Allow) C:\origin\spiele\battlefield 4\bf4.exe
FirewallRules: [{437CD112-A4A8-4A55-B03B-48623116E9E6}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{CFE7AF2B-1B9D-433B-BEA5-CAFB1205830A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{E58A0B5E-A034-456A-BDBD-999DB37C19C1}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{D80D45EF-79ED-4D66-B985-A7728C2EEE5A}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{2736472E-15A6-46B6-8522-0BA8B40C7EC2}] => (Allow) D:\Splinter Cell Conviction\src\system\Conviction_game.exe
FirewallRules: [{03B7330E-8E55-41B2-8D40-C87778EA0DBF}] => (Allow) D:\Splinter Cell Conviction\src\system\Conviction_game.exe
FirewallRules: [{175CD37C-C262-428D-BE5B-DB9331D99879}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Ultimate Edition\bin_ship\daorigins.exe
FirewallRules: [{4FD13B06-FB5C-437E-B64C-961911D19CC2}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Ultimate Edition\bin_ship\daorigins.exe
FirewallRules: [{1C5365FA-64A4-4EC0-9E45-E2D0769AC4F2}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe
FirewallRules: [{37C01D6E-52C0-4B34-85B1-4F951AC3BC02}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe
FirewallRules: [{5FA56620-54AB-47BB-A4B2-D4FCB20F8414}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Ultimate Edition\DAOriginsLauncher.exe
FirewallRules: [{74ABBB77-CDF6-423E-9EF4-F0C9BC9B783C}] => (Allow) D:\SteamLibrary\steamapps\common\Dragon Age Ultimate Edition\DAOriginsLauncher.exe
FirewallRules: [UDP Query User{759DF90A-E709-4121-856E-13899513755A}D:\users\viral nature\downloads\whos.your.daddy\whos.your.daddy\whosyourdaddy.exe] => (Allow) D:\users\viral nature\downloads\whos.your.daddy\whos.your.daddy\whosyourdaddy.exe
FirewallRules: [TCP Query User{4A35CDA0-1DDE-4E95-BCFE-82B58EB0B843}D:\users\viral nature\downloads\whos.your.daddy\whos.your.daddy\whosyourdaddy.exe] => (Allow) D:\users\viral nature\downloads\whos.your.daddy\whos.your.daddy\whosyourdaddy.exe
FirewallRules: [{4CA61150-B386-4178-AA70-FC6EED3C24C2}] => (Allow) D:\Splinter Cell Blacklist\src\SYSTEM\Blacklist_DX11_game.exe
FirewallRules: [{00AF2E4D-A0DC-4B67-9D25-5D7616D2E2F5}] => (Allow) D:\Splinter Cell Blacklist\src\SYSTEM\Blacklist_DX11_game.exe
FirewallRules: [{9E5DE8FA-ED83-4B49-BBE8-72052F3FE007}] => (Allow) D:\Splinter Cell Blacklist\src\SYSTEM\Blacklist_game.exe
FirewallRules: [{14E622E8-3AEF-4AC2-B7D4-B405948E4367}] => (Allow) D:\Splinter Cell Blacklist\src\SYSTEM\Blacklist_game.exe
FirewallRules: [{8BBF3A12-8116-4590-BFD9-0E20F00BBAAE}] => (Allow) D:\Splinter Cell\Tom Clancy's Splinter Cell\system\SplinterCell.exe
FirewallRules: [{6C164FA8-57D7-442B-BD58-4C4E1C4A06D2}] => (Allow) D:\Splinter Cell\Tom Clancy's Splinter Cell\system\SplinterCell.exe
FirewallRules: [{A9500196-E052-445C-AAA5-C0E65B95DEC0}] => (Allow) D:\SteamLibrary\steamapps\common\firstassault\Shipping\GAME.exe
FirewallRules: [{76892208-8B65-4B75-8801-76626696260A}] => (Allow) D:\SteamLibrary\steamapps\common\firstassault\Shipping\GAME.exe
FirewallRules: [{05230B1D-1273-408A-8CC0-395EE3A3EFE2}] => (Allow) D:\SteamLibrary\steamapps\common\KOAReckoning\Reckoning.exe
FirewallRules: [{42AFFCCA-60EC-4B86-9101-F712D4C823F0}] => (Allow) D:\SteamLibrary\steamapps\common\KOAReckoning\Reckoning.exe
FirewallRules: [{4976E812-3844-47CA-AE1E-AFC05FF668EF}] => (Allow) D:\SteamLibrary\steamapps\common\Deadlight\Binaries\Win32\LOTDGame.exe
FirewallRules: [{E19628D3-06CA-493E-B08F-905CC17B8A6A}] => (Allow) D:\SteamLibrary\steamapps\common\Deadlight\Binaries\Win32\LOTDGame.exe
FirewallRules: [UDP Query User{A33FB867-1572-44B7-832F-DC0DA7C5E6DE}D:\steamlibrary\steamapps\common\orcsmustdieunchained\binaries\win64\spitfiregame.exe] => (Allow) D:\steamlibrary\steamapps\common\orcsmustdieunchained\binaries\win64\spitfiregame.exe
FirewallRules: [TCP Query User{EA73F67C-A6CD-47CA-90AA-A51A09A932AB}D:\steamlibrary\steamapps\common\orcsmustdieunchained\binaries\win64\spitfiregame.exe] => (Allow) D:\steamlibrary\steamapps\common\orcsmustdieunchained\binaries\win64\spitfiregame.exe
FirewallRules: [{B8363EB2-BB5D-4D16-A1D8-D85C25CD51DF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{201E42E2-7FD2-4EFA-9651-3E5AEE1ED41B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CAB86B0C-ED01-4ADF-BBDC-4FAEEFF518C4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{DA26B0E7-B8C2-4B68-ACF9-1B486B62860A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{3258AD84-0208-4C8D-A059-193CC3E3CD14}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{2B84CBD4-CAE1-411C-A0D8-6AA4D730826A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8F999C5F-E98F-4D31-B9C2-DB0EB0C5D3EA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{02EB326A-7D57-4F7F-B8C1-3B46E75332EC}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{D4C43975-E2BF-46E1-BD8B-8843CE388CB5}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{8ACB5D4E-A930-4FE6-89DD-B1967735AA0E}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{D1E05B39-9BC5-4A04-8BB0-C2224238D792}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{734C014C-A30F-4705-8F14-101B0DAC215E}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{4623F4E8-3803-4A53-92C0-47267F848B96}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{DCEBE320-9732-4F25-BBA6-6E5FD204585B}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{99CF2AFB-3B45-41CD-ADBF-61D994302212}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{A43BAC21-1C7B-4EA2-B575-684922511A31}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{F82F2B46-BE72-44C9-AC6D-8F1B7F35CB6A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{81437B23-FF3A-4F16-B471-8234758874C5}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{AD2DFDA5-AB70-4AE4-BC07-B9E33857ECCA}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{63935ADE-DA63-463D-9426-92380E037A25}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{B1268290-CE32-471B-A095-35E87B96A519}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{286BAF60-972C-4AC9-A983-2E3A3F985A51}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{FD63F56A-135C-4420-81E1-51935269DF10}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{51355626-2F07-4B23-A1FF-9CAF60509928}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{3F2D1FA6-1AAC-472A-9BCF-2408BD3BAA39}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{6CBAC819-4906-4B86-8FC7-9B0211F042C1}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{77E76B07-D911-45F7-9AE5-74E83C5D5681}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [TCP Query User{37C693CC-CA44-4611-8675-C790FD9A1FF9}C:\program files\sony\vegas pro 13.0\vegas130.exe] => (Allow) C:\program files\sony\vegas pro 13.0\vegas130.exe
FirewallRules: [UDP Query User{6B65D4F9-DB13-4919-BE4B-2605A4252461}C:\program files\sony\vegas pro 13.0\vegas130.exe] => (Allow) C:\program files\sony\vegas pro 13.0\vegas130.exe
FirewallRules: [{0AA10833-D67A-4C48-993A-5E5D572741CE}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.5\FlashBuilder.exe
FirewallRules: [{0513719F-C0A4-4612-9FE2-5EC7D3B1FE3D}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.5\FlashBuilder.exe
FirewallRules: [{F96C0085-96B9-40F3-9472-4AD552AC7E7F}] => (Allow) LPort=7935
FirewallRules: [{80E5181A-7664-4264-B920-834AE5D5589B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{BF68034C-E2F3-4CBD-B5D9-4ED833B80B57}C:\program files\sony\vegas pro 13.0\vegas130.exe] => (Block) C:\program files\sony\vegas pro 13.0\vegas130.exe
FirewallRules: [UDP Query User{8504C407-9484-4665-8F32-0FE3A7FF237D}C:\program files\sony\vegas pro 13.0\vegas130.exe] => (Block) C:\program files\sony\vegas pro 13.0\vegas130.exe
FirewallRules: [{13D9F047-D666-4886-A48F-DF7F5CCC86A6}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{79F6E0DB-31DE-49F7-96E3-1E9C3D50F3B9}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{EDCA7DA8-0900-460D-AAFF-D38109517100}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [TCP Query User{45917A5C-6FF5-43B0-869A-914CF43F9805}C:\users\viral nature\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\viral nature\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{1FD83718-E3BE-40AE-97BB-70FCA5EA51AB}C:\users\viral nature\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\viral nature\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{FFC213C7-476F-4781-A072-2B8FEA924081}D:\steamlibrary\steamapps\common\trine 2\trine2_32bit.exe] => (Allow) D:\steamlibrary\steamapps\common\trine 2\trine2_32bit.exe
FirewallRules: [UDP Query User{6CAB4FBC-7CCA-4D21-92BA-8F82B2D36EAA}D:\steamlibrary\steamapps\common\trine 2\trine2_32bit.exe] => (Allow) D:\steamlibrary\steamapps\common\trine 2\trine2_32bit.exe
FirewallRules: [TCP Query User{CEFC5193-3A7A-4120-84AE-C20C78B626CB}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{00ED75B3-C35D-4578-B2A8-922B71D30832}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [TCP Query User{29FBA393-FB10-423A-9F47-316499FCBFBD}D:\users\viral nature\documents\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe] => (Allow) D:\users\viral nature\documents\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe
FirewallRules: [UDP Query User{A55205D4-AAAC-4DAA-8B22-DEBB1C768A0A}D:\users\viral nature\documents\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe] => (Allow) D:\users\viral nature\documents\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe
FirewallRules: [{17574FB7-02D0-49E0-B0B9-FE1114F89511}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{59F16CCC-661E-4E86-83EF-DEEE744D45FA}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{85371AFF-71EA-4A6A-AAE1-33635D393BF8}] => (Allow) D:\Users\Viral Nature\Documents\StarCraft II\StarCraft II.exe
FirewallRules: [{898B93D2-1E86-4E7E-92FB-B56CADC6FFB6}] => (Allow) D:\Users\Viral Nature\Documents\StarCraft II\StarCraft II.exe
FirewallRules: [{F19B574F-B19E-462B-B374-4B94165282D4}] => (Allow) D:\Users\Viral Nature\Documents\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{218149EA-042B-4537-8017-D756893A8F4A}] => (Allow) D:\Users\Viral Nature\Documents\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [TCP Query User{050BD74F-F536-4DF5-BEA6-32434788B3BD}D:\users\viral nature\documents\starcraft ii\versions\base32283\sc2.exe] => (Allow) D:\users\viral nature\documents\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [UDP Query User{7130E9A9-97BE-493A-ABE3-6006D0FE0061}D:\users\viral nature\documents\starcraft ii\versions\base32283\sc2.exe] => (Allow) D:\users\viral nature\documents\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [{6077779A-0600-4365-96D1-E7355252AF5C}] => (Allow) D:\SteamLibrary\steamapps\common\EvolveGame\Bin64_SteamRetail\Evolve.exe
FirewallRules: [{AC9C86EB-B00C-487D-A9E4-3C98C91B80C4}] => (Allow) D:\SteamLibrary\steamapps\common\EvolveGame\Bin64_SteamRetail\Evolve.exe
FirewallRules: [TCP Query User{E7310364-83CD-4C02-AEFA-59624E7E9C65}C:\users\viral nature\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\viral nature\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{AB40489A-7F87-480F-9532-7B1474B97C05}C:\users\viral nature\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\viral nature\appdata\roaming\spotify\spotify.exe
FirewallRules: [{8EF78916-5018-45F9-A34E-9D8C51F23C34}] => (Allow) C:\Program Files (x86)\Origin\Origin.exe
FirewallRules: [{A7BC3121-C0AD-42F1-820E-645087A3BED7}] => (Allow) C:\Program Files (x86)\Origin\Origin.exe
FirewallRules: [{864274F3-C1CF-43AB-B3BA-B03365DCFC1E}] => (Allow) C:\Program Files (x86)\Origin\Origin.exe
FirewallRules: [{38DDD818-C35F-4652-985C-D3F9A92F584B}] => (Allow) C:\Program Files (x86)\Origin\Origin.exe
FirewallRules: [{420A9EC4-434A-4BF1-8A0D-F2BE52EF2B7E}] => (Allow) C:\Program Files (x86)\LucasArts\Star Wars Battlefront\GameData\battlefront.exe
FirewallRules: [{EF94B9FA-29F6-4775-B6B2-C3241DBF1E0A}] => (Allow) C:\Program Files (x86)\LucasArts\Star Wars Battlefront\GameData\battlefront.exe
FirewallRules: [TCP Query User{104A2D3D-3A4F-4429-BA88-85E8A4F9D87F}D:\users\viral nature\documents\starcraft ii\versions\base38996\sc2_x64.exe] => (Allow) D:\users\viral nature\documents\starcraft ii\versions\base38996\sc2_x64.exe
FirewallRules: [UDP Query User{D43883B1-3CA6-4EFF-A7A7-4AF5775BA6A6}D:\users\viral nature\documents\starcraft ii\versions\base38996\sc2_x64.exe] => (Allow) D:\users\viral nature\documents\starcraft ii\versions\base38996\sc2_x64.exe
FirewallRules: [TCP Query User{8FF8D9D2-4FB6-4A65-9D85-B331B032142D}D:\users\viral nature\documents\starcraft ii\versions\base38996\sc2.exe] => (Allow) D:\users\viral nature\documents\starcraft ii\versions\base38996\sc2.exe
FirewallRules: [UDP Query User{D2B7AAC0-CEC9-4D09-9354-EF6D7556D100}D:\users\viral nature\documents\starcraft ii\versions\base38996\sc2.exe] => (Allow) D:\users\viral nature\documents\starcraft ii\versions\base38996\sc2.exe
FirewallRules: [{9E0EFC43-5809-4D1E-B6DE-5ABAA4BDFA09}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{791BD2DE-9D37-4DB5-A1F3-B06917E887E3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{51C3736F-3D37-4C87-B119-E095D9DE69CE}] => (Allow) D:\SteamLibrary\steamapps\common\Far Cry 3 Blood Dragon\bin\FC3BDUpdaterSteam.exe
FirewallRules: [{1A46C642-29BD-4FFA-91A7-867EF2F3029E}] => (Allow) D:\SteamLibrary\steamapps\common\Far Cry 3 Blood Dragon\bin\FC3BDUpdaterSteam.exe
FirewallRules: [{C6B05436-ADAF-4C6E-BBD2-9E8BE9AA2E76}] => (Allow) D:\SteamLibrary\steamapps\common\Fable Anniversary\Binaries\Win32\Fable Anniversary.exe
FirewallRules: [{92CF078D-69FC-4A4D-BBEE-2CC80AF5AD77}] => (Allow) D:\SteamLibrary\steamapps\common\Fable Anniversary\Binaries\Win32\Fable Anniversary.exe
FirewallRules: [TCP Query User{B6DF9614-8DF5-44E4-B086-0E2D63B364AE}C:\users\viral nature\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\viral nature\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [UDP Query User{45316504-9E41-4C7C-B174-4D7FA03B46DD}C:\users\viral nature\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\viral nature\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [{03FFBC3A-C771-4298-8029-FCEF0C960AA4}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Anno 2070\Anno5.exe
FirewallRules: [{BEBA1836-AEF3-4F39-B7E0-BCE7B5D0379E}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Anno 2070\Anno5.exe
FirewallRules: [{EC6099A9-A20D-4B78-9EEE-F8466BA82C16}] => (Allow) D:\SteamLibrary\steamapps\common\swkotor\swkotor.exe
FirewallRules: [{5B67EBAB-53CE-4098-B978-35C537BCDA0A}] => (Allow) D:\SteamLibrary\steamapps\common\swkotor\swkotor.exe
FirewallRules: [{418C2748-CB37-4549-A789-F3443EA1A005}] => (Allow) D:\SteamLibrary\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{571A979E-E667-4FAB-9E5C-CB6A74DB3AA0}] => (Allow) D:\SteamLibrary\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [TCP Query User{BA5937CA-03CD-482F-B676-6D0DFD36335B}C:\program files\cloud imperium games\patcher\cigpatcher.exe] => (Allow) C:\program files\cloud imperium games\patcher\cigpatcher.exe
FirewallRules: [UDP Query User{FBD69D71-78A7-4EEB-85E4-BF7A81328ED1}C:\program files\cloud imperium games\patcher\cigpatcher.exe] => (Allow) C:\program files\cloud imperium games\patcher\cigpatcher.exe
FirewallRules: [TCP Query User{49E6857E-3DE9-4CF0-B7C7-073152E5B685}C:\program files\cloud imperium games\starcitizen\public\bin64\starcitizen.exe] => (Allow) C:\program files\cloud imperium games\starcitizen\public\bin64\starcitizen.exe
FirewallRules: [UDP Query User{48AEC5A4-02E3-4508-B10C-36FD980F3A6D}C:\program files\cloud imperium games\starcitizen\public\bin64\starcitizen.exe] => (Allow) C:\program files\cloud imperium games\starcitizen\public\bin64\starcitizen.exe
FirewallRules: [TCP Query User{F8E7224B-0229-485D-A107-452648F27249}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{B8209F20-204D-42F1-878A-07E778B9CDBA}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{5A5C74A3-1C04-47BC-952D-257227C57E5A}D:\origin\spiele\battlefield 4\bf4.exe] => (Allow) D:\origin\spiele\battlefield 4\bf4.exe
FirewallRules: [UDP Query User{1CEF0A82-A62B-4EF0-8E03-041C15157D2F}D:\origin\spiele\battlefield 4\bf4.exe] => (Allow) D:\origin\spiele\battlefield 4\bf4.exe
FirewallRules: [TCP Query User{9FEAC879-88C9-48A0-9F82-D3BE96DB716F}D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [UDP Query User{E2EF141B-AA6F-4D62-9E47-04A52DE6001F}D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{54521C32-C3CF-457D-AD26-38B20178856B}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{C08B9E46-6FC2-4F73-A91D-3C36EAAB4DEC}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{F5E8821E-C4E2-4DA3-BD90-0D3ABD98B4E2}D:\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe] => (Allow) D:\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe
FirewallRules: [UDP Query User{353CB44F-6423-4F93-9A4F-594459598D35}D:\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe] => (Allow) D:\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe
FirewallRules: [{C2C6D59D-81A5-4E8C-BA31-166D262F3D25}] => (Allow) D:\SteamLibrary\steamapps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{FBAB5C21-74D9-4999-A045-0729D5C669B5}] => (Allow) D:\SteamLibrary\steamapps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{25601ABE-09D2-4E2C-895E-616FA008DF26}] => (Allow) D:\SteamLibrary\steamapps\common\Far Cry 3\bin\farcry3.exe
FirewallRules: [{F8B08DA8-E42F-44BD-95E4-7AC379CFD990}] => (Allow) D:\SteamLibrary\steamapps\common\Far Cry 3\bin\farcry3.exe
FirewallRules: [{3BEAD91D-AE90-4B7C-BF66-460CA8D307C3}] => (Allow) D:\SteamLibrary\steamapps\common\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{9FD0BF5B-0403-42B7-8854-70BF32CE8E15}] => (Allow) D:\SteamLibrary\steamapps\common\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{6F29DEDF-0606-4F0C-A047-4175C3FBD774}] => (Allow) D:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{9BBF3F15-C853-449C-B3BA-FE7DE7B81AAF}] => (Allow) D:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{89CBF81C-85FD-4537-ACD5-AF585AE049E0}] => (Allow) D:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{9C144075-6E34-4D23-BE62-60788D36B709}] => (Allow) D:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [TCP Query User{F340CE51-F132-41B8-8043-A6B84E3B4447}D:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{0434A5CE-ABFE-40B9-99A2-B8BCFB66CFC0}D:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [{08843BF7-06E4-490F-B5EF-280510CF9B6B}] => (Block) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [{94C6D665-2541-4D00-B68B-E0033ECDD687}] => (Block) D:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [TCP Query User{C78D41F6-56E9-4E5A-BFC6-9E8F9E48CC92}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{89383B90-3F90-47D5-BBCB-00A27E8911CB}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{0B7A01C7-71D6-4985-B116-E9842DA28F2B}] => (Block) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{5629EFBE-22B1-48C8-B7DE-F25B2E8CB922}] => (Block) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{9C78F10B-69E9-4AB5-9988-F152D27A33DE}] => (Allow) D:\SteamLibrary\steamapps\common\Return to Castle Wolfenstein\WolfSP.exe
FirewallRules: [{E667E389-0B3D-4049-A4B9-B1E4416A145D}] => (Allow) D:\SteamLibrary\steamapps\common\Return to Castle Wolfenstein\WolfSP.exe
FirewallRules: [{220814A4-29D8-48BA-AA7E-9DE5E70FCA59}] => (Allow) D:\SteamLibrary\steamapps\common\Return to Castle Wolfenstein\WolfMP.exe
FirewallRules: [{205A9CA4-C9B8-4105-80BE-958630D6C3B9}] => (Allow) D:\SteamLibrary\steamapps\common\Return to Castle Wolfenstein\WolfMP.exe
FirewallRules: [{C0DE2EEE-92C8-46FE-8D99-6AE7866E3BF7}] => (Allow) D:\SteamLibrary\steamapps\common\firstassault\Shipping\GAME.exe
FirewallRules: [{51BC4A19-0688-4319-9BBE-20AEB10AC195}] => (Allow) D:\SteamLibrary\steamapps\common\firstassault\Shipping\GAME.exe
FirewallRules: [{629D518B-FD2C-4ABA-AAF6-A5BDD778D533}] => (Allow) D:\SteamLibrary\steamapps\common\State of Decay\StateOfDecay.exe
FirewallRules: [{DC06A290-BACC-4139-8ED2-FA51EDA63FC2}] => (Allow) D:\SteamLibrary\steamapps\common\State of Decay\StateOfDecay.exe
FirewallRules: [{54A3B349-5678-45E3-9C98-5C4AF9B8CBB3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{F498C57D-AE23-4FCD-925A-F0BB04D1D247}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{41170666-AD0B-4888-B6BF-87B25F443B62}] => (Allow) D:\SteamLibrary\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{B35EEA3B-5274-461E-B383-670C2ADD225B}] => (Allow) D:\SteamLibrary\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{ABD1C716-20A0-4D3E-B866-B3E2FF91E350}] => (Allow) C:\Users\Viral Nature\Ubisoft\PoP\Prince of Persia Sands of Time\PrinceOfPersia.EXE
FirewallRules: [{835B836F-27D3-468C-BBC3-2101BD7DDE45}] => (Allow) C:\Users\Viral Nature\Ubisoft\PoP\Prince of Persia Sands of Time\PrinceOfPersia.EXE
FirewallRules: [{E71F69E9-E6C2-4B7E-BF0E-5A21B9B6DEAC}] => (Allow) C:\Users\Viral Nature\Ubisoft\PoP\Prince of Persia Sands of Time\POP.EXE
FirewallRules: [{F7650F2C-8405-4181-A2EF-049DAC92A1EB}] => (Allow) C:\Users\Viral Nature\Ubisoft\PoP\Prince of Persia Sands of Time\POP.EXE
FirewallRules: [{48E2816D-6DCB-4F62-9001-D458A6343C37}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{91232507-60BE-4006-BFBE-D199DC6FE5EB}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{603CEE0F-D113-4DD9-BD8D-3E90FFF485C5}] => (Allow) D:\SteamLibrary\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{4CF88123-9D32-414F-B9AB-BD0F4AEBE184}] => (Allow) D:\SteamLibrary\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{F45BA50A-88E0-42E1-9BB1-48C9C09BE88D}] => (Allow) LPort=9143
FirewallRules: [{8AAF7988-ECF7-4307-97C9-921AF6108BFB}] => (Allow) LPort=2333
FirewallRules: [{FEB76C96-AFE6-4EA4-B358-9F66692A3B7F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{9501D478-5718-48DC-BA5A-CA70EF93244E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aragami\Aragami.exe
FirewallRules: [{1EF41CDD-C870-47B5-8652-84F5AB7943EA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aragami\Aragami.exe
FirewallRules: [{6DAE7702-B822-4173-B520-7054FC3B0550}] => (Allow) D:\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{6CC99B76-9CA2-4352-8471-2E108F68BBF3}] => (Allow) D:\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe

==================== Wiederherstellungspunkte =========================

10-10-2016 00:38:12 Geplanter Prüfpunkt
11-10-2016 19:37:52 Installed League of Legends

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (10/13/2016 10:54:07 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "c:\program files (x86)\adobe\adobe onlocation cs5.1\setup\resources\libraries\ARKEngine.dll".
Die abhängige Assemblierung "Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (10/13/2016 10:54:07 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "c:\program files (x86)\adobe\adobe onlocation cs5.1\setup\resources\libraries\ARKCmdDefrag.dll".
Die abhängige Assemblierung "Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (10/13/2016 10:54:07 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "c:\program files (x86)\adobe\adobe onlocation cs5.1\setup\resources\libraries\ARKCmdFS.dll".
Die abhängige Assemblierung "Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (10/13/2016 10:54:07 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "c:\program files (x86)\adobe\adobe onlocation cs5.1\setup\resources\libraries\ARKCmdCaps.dll".
Die abhängige Assemblierung "Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (10/13/2016 09:28:39 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "WmiApRpl" in der DLL "C:\WINDOWS\system32\wbem\wmiaprpl.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.

Error: (10/13/2016 09:28:39 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Die erweiterbare Leistungsindikator-DLL rdyboost kann nicht geladen werden. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Windows-Fehlercode.

Error: (10/13/2016 09:28:38 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Das Serverdienst-Leistungsobjekt kann nicht geöffnet werden. Die ersten vier Bytes (DWORD) des Datenabschnitts enthalten den Statuscode.

Error: (10/13/2016 09:28:38 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "MSDTC" in der DLL "C:\WINDOWS\system32\msdtcuiu.DLL" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.

Error: (10/13/2016 09:28:38 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "Lsa" in der DLL "C:\Windows\System32\Secur32.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.

Error: (10/13/2016 09:28:38 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "ESENT" in der DLL "C:\WINDOWS\system32\esentprf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.


Systemfehler:
=============
Error: (10/16/2016 11:35:36 PM) (Source: DCOM) (EventID: 10010) (User: VIRALNATURE-PC)
Description: Der Server "{21F282D1-A881-49E1-9A3A-26E44E39B86C}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (10/16/2016 08:43:10 PM) (Source: DCOM) (EventID: 10010) (User: VIRALNATURE-PC)
Description: Der Server "{21F282D1-A881-49E1-9A3A-26E44E39B86C}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (10/16/2016 08:41:09 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (10/16/2016 08:40:50 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip1click" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (10/16/2016 08:40:50 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip1click" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (10/16/2016 08:40:50 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NetTcpActivator" ist vom Dienst "NetTcpPortSharing" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.

Error: (10/16/2016 08:40:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "HuaweiHiSuiteService64.exe" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.

Error: (10/15/2016 11:47:43 PM) (Source: DCOM) (EventID: 10010) (User: VIRALNATURE-PC)
Description: Der Server "{21F282D1-A881-49E1-9A3A-26E44E39B86C}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (10/15/2016 11:42:59 PM) (Source: DCOM) (EventID: 10010) (User: VIRALNATURE-PC)
Description: Der Server "{21F282D1-A881-49E1-9A3A-26E44E39B86C}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (10/15/2016 10:44:16 PM) (Source: DCOM) (EventID: 10010) (User: VIRALNATURE-PC)
Description: Der Server "{21F282D1-A881-49E1-9A3A-26E44E39B86C}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.


CodeIntegrity:
===================================
  Date: 2016-10-13 07:07:56.077
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-13 07:07:55.983
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-13 07:07:55.920
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-13 07:07:55.826
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-13 07:07:55.409
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-13 07:07:55.315
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-13 07:07:55.247
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-13 07:07:55.151
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-13 07:07:33.725
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-13 07:07:33.631
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i5-3570K CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 20%
Installierter physikalischer RAM: 16268.76 MB
Verfügbarer physikalischer RAM: 12859.56 MB
Summe virtueller Speicher: 17168.76 MB
Verfügbarer virtueller Speicher: 13755.98 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:238.03 GB) (Free:122.53 GB) NTFS
Drive d: () (Fixed) (Total:465.66 GB) (Free:183.68 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: B1388939)
Partition 1: (Not Active) - (Size=238 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 78B5FFE2)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=06)

==================== Ende von Addition.txt ============================
Ich bedanke mich im Vorraus für jede Hilfe :)

cosinus 20.10.2016 09:00
Zitat:
Adobe Acrobat X Pro
Adobe Creative Suite 5.5 Master Collection
Nur mal so als Beispiel.
Ist das ein gewerblich genutztes System?

LChan 26.10.2016 01:53
Nein, weshalb? :)

cosinus 26.10.2016 09:04
Ich hab dir den Grund extra zitiert und du fragst weshalb? :wtf:
Schonmal gesehen, wie teuer solche Lizenzen waren?
Und weil eine derartige Software von Privatleuten idR weder vernünftig bedient noch überhaupt benötigt wird... :kaffee:

LChan 26.10.2016 15:28
Na ja, ich verstehe nur nicht ganz worauf du hinaus willst. Ich habe diese Programme und verwende sie Hobbymäßig, aber sind die die Infektionsquelle, oder bin ich da jetzt auf dem Holzweg? :D

cosinus 26.10.2016 20:37
Ja woher hast du diese Software? :wtf:

Üblicherweise bekommst du derartige Adobe-Software nicht für Zweimarkfuffzich und weil diese Software recht teuer ist, bohr ich da immer nach, denn entweder ist die geklaut oder es ist doch kein rein privates Vergnügen.

Oder hast du echt massig Kohle für ein ein privates Vergnügen hingelegt? :wtf:

Hinzu kommt auch noch zB Sony Vegas PRO 13. Auf die schnelle bei Amazon gefunden: 200 €

Alles rein privat? :wtf:

LChan 26.10.2016 22:22
Das Zeug hatte mir damals ein Freund gegeben, da ich nach 2 Praktika in dem Bereich, viel Interesse daran entwickelt hatte, woher der das wiederum hat weiß ich nicht.
Zudem besitzt meine Mutter aus Beruflichen Gründen ein Creative Cloud Abonnement, wo neuere Versionen dabei sind. Die Benutze ich allerdings nicht ^^

cosinus 26.10.2016 22:33
Gut. Irgendwelche Funde? MBAM oder anderen Virenscanner? Wenn ja, Logs posten.

LChan 26.10.2016 22:53
Das hier ist das Mbam Log von meinem Scan

Code:
Malwarebytes Anti-Malware
www.malwarebytes.org

Suchlaufdatum: 11.10.2016
Suchlaufzeit: 23:01
Protokolldatei: Mbam Log.txt
Administrator: Ja

Version: 2.2.1.1043
Malware-Datenbank: v2016.10.11.10
Rootkit-Datenbank: v2016.09.26.02
Lizenz: Testversion
Malware-Schutz: Aktiviert
Schutz vor bösartigen Websites: Aktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 10
CPU: x64
Dateisystem: NTFS
Benutzer: Viral Nature

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 364038
Abgelaufene Zeit: 5 Min., 18 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 3
PUP.Optional.VideoAdBlocker.ChrPRST, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\bknbnapaddjdnbilpmlacdkjdkjmbjhd, In Quarantäne, [0aec2f687f1bb97dd2dfe4c916eec53b],
PUP.Optional.VideoAdBlocker.ChrPRST, HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\bknbnapaddjdnbilpmlacdkjdkjmbjhd, In Quarantäne, [4babe9aeb6e4e452337f525ba95b2ad6],
PUP.Optional.Conduit, HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, In Quarantäne, [e115e3b42e6c2e08681876265da6cb35],

Registrierungswerte: 1
PUP.Optional.Conduit, HKU\S-1-5-21-3774873185-1156131496-3032177255-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, hxxp://www.bing.com/search?pc=COSP&ptag=D081715-AD42D1DB7E9&form=CONBDF&conlogo=CT3334497&q={searchTerms}, In Quarantäne, [e115e3b42e6c2e08681876265da6cb35]

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 20
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\css, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\img, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\de, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\en, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\en_GB, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\en_US, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\es, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\es_419, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\fr, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\ja, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\pt_BR, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\pt_PT, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\ru, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\uk, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\zh_CN, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\zh_TW, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_metadata, In Quarantäne, [a74f554237630036c6ea06a743c17e82],

Dateien: 26
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\background.js, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\blocker.js, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\jquery-1.11.1.min.js, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\manifest.json, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\popup.html, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\popup.js, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\upalytics_ch.js, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\css\popup.css, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\img\block_128.png, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\img\block_16.png, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\img\block_48.png, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\de\messages.json, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\en\messages.json, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\en_GB\messages.json, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\en_US\messages.json, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\es\messages.json, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\es_419\messages.json, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\fr\messages.json, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\ja\messages.json, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\pt_BR\messages.json, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\pt_PT\messages.json, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\ru\messages.json, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\uk\messages.json, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\zh_CN\messages.json, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_locales\zh_TW\messages.json, In Quarantäne, [a74f554237630036c6ea06a743c17e82],
PUP.Optional.VideoAdBlocker.ChrPRST, C:\Users\Viral Nature\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd\1.4.3_0\_metadata\verified_contents.json, In Quarantäne, [a74f554237630036c6ea06a743c17e82],

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)
Hier meine WinDefender Logs

Code:
Von Windows Defender wurde Schadsoftware oder andere potenziell unerwünschte Software erkannt.
 Weitere Informationen:
hxxp://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Ramnit.A&threatid=2147636560&enterprise=0
        Name: Virus:Win32/Ramnit.A
        ID: 2147636560
        Schweregrad: Schwerwiegend
        Kategorie: Virus
        Pfad: containerfile:_D:\Users\Viral Nature\Downloads\all_for_editing.rar.part;file:_D:\Users\Viral Nature\Downloads\all_for_editing.rar.part->all for editing\# 4k Subs-Pack by CANi\HLAE OLD\AfxHookSource.dll
        Erkennungsursprung: Lokaler Computer
        Erkennungstyp: Konkret
        Erkennungsquelle: Benutzer
        Benutzer: ViralNature-PC\Viral Nature
        Prozessname: Unknown
        Signaturversion: AV: 1.229.1570.0, AS: 1.229.1570.0, NIS: 116.33.0.0
Code:
Von Windows Defender wurde Schadsoftware oder andere potenziell unerwünschte Software erkannt.
 Weitere Informationen:
hxxp://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Ramnit.A&threatid=2147636560&enterprise=0
        Name: Virus:Win32/Ramnit.A
        ID: 2147636560
        Schweregrad: Schwerwiegend
        Kategorie: Virus
        Pfad: containerfile:_D:\Users\Viral Nature\Downloads\all_for_editing.rar.part;file:_D:\Users\Viral Nature\Downloads\all_for_editing.rar.part->all for editing\# 4k Subs-Pack by CANi\HLAE OLD\AfxHookGoldSrc.dll
        Erkennungsursprung: Lokaler Computer
        Erkennungstyp: Konkret
        Erkennungsquelle: Benutzer
        Benutzer: ViralNature-PC\Viral Nature
        Prozessname: Unknown
        Signaturversion: AV: 1.229.1570.0, AS: 1.229.1570.0, NIS: 116.33.0.0
Interessanter weise sagt er zu den beiden auch das hier:

Code:
Kritischer Fehler von Windows Defender beim Ergreifen von Maßnahmen gegen Schadsoftware oder andere potenziell unerwünschte Software.
 Weitere Informationen:
hxxp://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Ramnit.A&threatid=2147636560&enterprise=0
        Name: Virus:Win32/Ramnit.A
        ID: 2147636560
        Schweregrad: Schwerwiegend
        Kategorie: Virus
        Pfad: containerfile:_D:\Users\Viral Nature\Downloads\all_for_editing.rar.part;file:_D:\Users\Viral Nature\Downloads\all_for_editing.rar.part->all for editing\# 4k Subs-Pack by CANi\HLAE OLD\AfxHookSource.dll
        Erkennungsursprung: Lokaler Computer
        Erkennungstyp: Konkret
        Erkennungsquelle: Benutzer
        Benutzer: ViralNature-PC\Viral Nature
        Prozessname: Unknown
        Aktion: Bereinigen
        Aktionsstatus:  No additional actions required
        Fehlercode: 0x8007065e
        Fehlerbeschreibung: Daten mit diesem Typ werden nicht unterstützt.
        Signaturversion: AV: 1.229.1570.0, AS: 1.229.1570.0, NIS: 116.33.0.0
Code:
Kritischer Fehler von Windows Defender beim Ergreifen von Maßnahmen gegen Schadsoftware oder andere potenziell unerwünschte Software.
 Weitere Informationen:
hxxp://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Ramnit.A&threatid=2147636560&enterprise=0
        Name: Virus:Win32/Ramnit.A
        ID: 2147636560
        Schweregrad: Schwerwiegend
        Kategorie: Virus
        Pfad: containerfile:_D:\Users\Viral Nature\Downloads\all_for_editing.rar.part;file:_D:\Users\Viral Nature\Downloads\all_for_editing.rar.part->all for editing\# 4k Subs-Pack by CANi\HLAE OLD\AfxHookGoldSrc.dll
        Erkennungsursprung: Lokaler Computer
        Erkennungstyp: Konkret
        Erkennungsquelle: Benutzer
        Benutzer: ViralNature-PC\Viral Nature
        Prozessname: Unknown
        Aktion: Bereinigen
        Aktionsstatus:  No additional actions required
        Fehlercode: 0x8007065e
        Fehlerbeschreibung: Daten mit diesem Typ werden nicht unterstützt.
        Signaturversion: AV: 1.229.1570.0, AS: 1.229.1570.0, NIS: 116.33.0.0
LG :)

cosinus 26.10.2016 22:56
Und Avast hat nix gefunden??

LChan 26.10.2016 23:10
Rein gar nichts. Kann leider gerade die logs nicht finden.

Der Microsoft Safety Scanner sagt zudem das hier.

Code:
---------------------------------------------------------------------------------------

Microsoft Safety Scanner v1.0, (build 1.229.1550.0)
Started On Wed Oct 12 18:18:37 2016

Extended Scan Results
----------------
->Scan ERROR: resource process://pid:464,ProcessStart:131207563982192099 (code 0x00000005 (5))
->Scan ERROR: resource process://pid:668,ProcessStart:131207564003811981 (code 0x00000005 (5))
->Scan ERROR: resource process://pid:760,ProcessStart:131207564025481390 (code 0x00000005 (5))
->Scan ERROR: resource process://pid:768,ProcessStart:131207564025512299 (code 0x00000005 (5))
->Scan ERROR: resource process://pid:888,ProcessStart:131207564027064763 (code 0x00000005 (5))
->Scan ERROR: resource process://pid:3372,ProcessStart:131207564045379512 (code 0x00000005 (5))
->Scan ERROR: resource process://pid:13976,ProcessStart:131207626790398377 (code 0x0000012B (299))
->Scan ERROR: resource file://C:\pagefile.sys (code 0x00000020 (32))
->Scan ERROR: resource file://C:\pagefile.sys (code 0x00000020 (32))
->Scan ERROR: resource file://C:\swapfile.sys (code 0x00000020 (32))
->Scan ERROR: resource file://C:\swapfile.sys (code 0x00000020 (32))
->Scan ERROR: resource file://C:\pagefile.sys (code 0x00000020 (32))
->Scan ERROR: resource file://C:\swapfile.sys (code 0x00000020 (32))
->Scan ERROR: resource file://C:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752} (code 0x00000005 (5))
->Scan ERROR: resource file://C:\System Volume Information\{abaa96c7-8e4f-11e6-b5a9-bc5ff46be7ae}{3808876b-c176-4e48-b7ae-04046e6cc752} (code 0x00000005 (5))
->Scan ERROR: resource file://C:\System Volume Information\{d9115ac4-8fb5-11e6-b5ab-bc5ff46be7ae}{3808876b-c176-4e48-b7ae-04046e6cc752} (code 0x00000005 (5))
Threat detected: Backdoor:Win32/IRCbot.FU
    containerfile://D:\Users\Viral Nature\Downloads\SOFX Patch.zip
        SHA1:  c5ecc890220ba805e9a1a60ec5730a0cc0af270c
    file://D:\Users\Viral Nature\Downloads\SOFX Patch.zip->Sapphire OFX 6.10 Patch/PATCH/32 bit/sapphire ofx patch 32bit.exe.exe
        SigSeq: 0x0000B578D5C63E46
    file://D:\Users\Viral Nature\Downloads\SOFX Patch.zip->Sapphire OFX 6.10 Patch/PATCH/64 bit/sapphire ofx patch 64bit.exe.exe
        SigSeq: 0x0000B578D5C63E46
        SHA1:  20238445a047f8555061746a0f101f18c07acc7f
Threat detected: HackTool:Win32/Patcher
    containerfile://D:\Users\Lennplayz\Documents\Sony Vegas Data\Sony Vegas Pro 13.0 build 290 (64 bit)
        SHA1:  e8bb63256482fe0c8165dde48146b4757260c383
    file://D:\Users\Lennplayz\Documents\Sony Vegas Data\Sony Vegas Pro 13.0 build 290 (64 bit)->Sony Vegas Pro 13.0 build 290 (64 bit)
        SigSeq: 0x00001667B4FFF557
        SHA1:  10f0341426298cfe8a09d9d28b4017910f70c6f8
Threat detected: Virus:Win32/Ramnit.A
    containerfile://D:\Users\Viral Nature\Downloads\all_for_editing.rar.part
        SHA1:  8118e59eecbd6b340fa05496e16c5c5997af8138
    file://D:\Users\Viral Nature\Downloads\all_for_editing.rar.part->all for editing\# 4k Subs-Pack by CANi\HLAE OLD\AfxHookGoldSrc.dll
        SigSeq: 0x000038892FF40400
Threat detected: Virus:Win32/Ramnit.A
    containerfile://D:\Users\Viral Nature\Downloads\all_for_editing.rar.part
        SHA1:  8118e59eecbd6b340fa05496e16c5c5997af8138
    file://D:\Users\Viral Nature\Downloads\all_for_editing.rar.part->all for editing\# 4k Subs-Pack by CANi\HLAE OLD\AfxHookSource.dll
        SigSeq: 0x000038892FF40400
        SHA1:  f01a900614993e8a3b8112be6ad25bddd81fb113

Extended Scan Removal Results
----------------
Start 'clean' for file://\\?\D:\Users\Viral Nature\Downloads\all_for_editing.rar.part->all for editing\# 4k Subs-Pack by CANi\HLAE OLD\AfxHookSource.dll
Operation failed (code=0x8026), please use a full antivirus product ! !

Start 'clean' for file://\\?\D:\Users\Viral Nature\Downloads\all_for_editing.rar.part->all for editing\# 4k Subs-Pack by CANi\HLAE OLD\AfxHookGoldSrc.dll
Operation failed (code=0x8026), please use a full antivirus product ! !

Start 'remove' for file://\\?\D:\Users\Viral Nature\Downloads\SOFX Patch.zip->Sapphire OFX 6.10 Patch/PATCH/64 bit/sapphire ofx patch 64bit.exe.exe
Operation succeeded !

Start 'remove' for file://\\?\D:\Users\Viral Nature\Downloads\SOFX Patch.zip->Sapphire OFX 6.10 Patch/PATCH/32 bit/sapphire ofx patch 32bit.exe.exe
Operation succeeded !

Start 'remove' for file://\\?\D:\Users\Lennplayz\Documents\Sony Vegas Data\Sony Vegas Pro 13.0 build 290 (64 bit)->Sony Vegas Pro 13.0 build 290 (64 bit)
Operation failed (code=0x8026), please use a full antivirus product ! !

Start 'remove' for containerfile://\\?\D:\Users\Lennplayz\Documents\Sony Vegas Data\Sony Vegas Pro 13.0 build 290 (64 bit)
Operation failed (code=0x8026), please use a full antivirus product ! !


Results Summary:
----------------
Found HackTool:Win32/Patcher, partially removed.
Found Virus:Win32/Ramnit.A, partially removed.
Found Backdoor:Win32/IRCbot.FU and Removed!
Microsoft Safety Scanner Finished On Wed Oct 12 22:08:59 2016


Return code: 7 (0x7)

cosinus 26.10.2016 23:15
Also die Dateinamen führen zu einschlägigen Crackseiten. Hatte ich ja schon vermutet.

Bevor es hier weitergeht muss die gecrackte Software runter. Also deinstalliere:

- alles von Adobe (bis auf die Freeware wie zB Flash Player, AIR und das legal erworbene Cloudteil)

- Sony Vegas

- alle cracks/keygens

- etwaig weitere gecrackte Software


Lesestoff:
Illegale Software: Cracks, Keygens und Co

Bitte lesen => http://www.trojaner-board.de/95393-c...-software.html

Es geht weiter wenn du alles Illegale entfernt hast.

Bei wiederholten Crack/Keygen Verstößen behalte ich es mir vor, den Support einzustellen, d.h. Hilfe nur noch bei der Datensicherung und Neuinstallation des Betriebssystems.


Alle Zeitangaben in WEZ +1. Es ist jetzt 12:05 Uhr.
Seite 1 von 4 1 23 Letzte »
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131